From mikal at stillhq.com Sat Dec 1 11:17:27 2018 From: mikal at stillhq.com (Michael Still) Date: Sat, 1 Dec 2018 22:17:27 +1100 Subject: [dev][nova] Yay Friday gate regressions! In-Reply-To: <07708c7b-5b34-f5ab-1f22-dfc8f1d75fc0@gmail.com> References: <07708c7b-5b34-f5ab-1f22-dfc8f1d75fc0@gmail.com> Message-ID: The first one of those was trivial (although I am confused as to why it didn't fail for the test run where the patch was proposed, I can't see an obvious race condition). I have proposed a fix at https://review.openstack.org/#/c/621346/ . Michael On Sat, Dec 1, 2018 at 8:30 AM Matt Riedemann wrote: > Just FYI there are a couple of regressions hitting nova unit and > functional test jobs right now: > > https://bugs.launchpad.net/nova/+bug/1806123 > > ^ Is likely due to mocking a global for the new I/O concurrency > semaphore stuff in the libvirt driver. I'm not sure what we should do > about that one. During the code review I suggested writing a fixture > which would essentially maintain the context manager (so we have > __enter__ and __exit__) but just make it a noop, but we still want to > make sure it's called in places where it's used. > > https://bugs.launchpad.net/nova/+bug/1806126 > > ^ Is a bit hairier since I'm seeing both weird, potentially global mock, > failures and also timeouts, also potentially because of mocking globals. > Since there is no functional code change tied to that one yet (it's > still being reviewed, this was a recreate test change only), I have > proposed a revert to try and stem the bleeding unless someone (mdbooth?) > can root cause and fix it faster. > > Happy rechecking! > > -- > > Thanks, > > Matt > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From ervikrant06 at gmail.com Sun Dec 2 04:03:56 2018 From: ervikrant06 at gmail.com (Vikrant Aggarwal) Date: Sun, 2 Dec 2018 09:33:56 +0530 Subject: [openstack-dev] [kuryr] can we start kuryr libnetwork in container inside the nova VM. In-Reply-To: <7b585278013291fda1d55b5d74965b26d317e637.camel@redhat.com> References: <7b585278013291fda1d55b5d74965b26d317e637.camel@redhat.com> Message-ID: Thanks Michal. Yes, my scenario is same which you mentioned. But I don't want to use COE atm. So. the OVS and neutron-agent running inside the VM will be communicating with compute node neutron agent? Thanks & Regards, Vikrant Aggarwal On Fri, Nov 30, 2018 at 9:31 PM Michał Dulko wrote: > On Fri, 2018-11-30 at 09:38 +0530, Vikrant Aggarwal wrote: > > Hello Team, > > > > I have seen the steps of starting the kuryr libnetwork container on > > compute node. But If I need to run the same container inside the VM > > running on compute node, is't possible to do that? > > > > I am not sure how can I map the /var/run/openvswitch inside the > > nested VM because this is present on compute node. > > I think that if you want to run Neutron-networked Docker containers on > an OpenStack VM, you'll need OpenvSwitch and neutron-agent installed on > that VM as well. > > A better-suited approach would be to run K8s on OpenStack and use > kuryr-kubernetes instead. That way Neutron subports are used to network > pods. We have such a K8s-on-VM use case described in the docs [1]. > > [1] > https://docs.openstack.org/kuryr-kubernetes/latest/installation/devstack/nested-vlan.html > > > https://docs.openstack.org/kuryr-libnetwork/latest/readme.html > > > > Thanks & Regards, > > Vikrant Aggarwal > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From juliaashleykreger at gmail.com Sun Dec 2 14:43:46 2018 From: juliaashleykreger at gmail.com (Julia Kreger) Date: Sun, 2 Dec 2018 06:43:46 -0800 Subject: Proposing KaiFeng Wang for ironic-core Message-ID: I'd like to propose adding KaiFeng to the ironic-core reviewer group. Previously, we had granted KaiFeng rights on ironic-inspector-core and I personally think they have done a great job there. Kaifeng has also been reviewing other repositories in ironic's scope[1]. Their reviews and feedback have been insightful and meaningful. They have also been very active[2] at reviewing which is an asset for any project. I believe they will be an awesome addition to the team. -Julia [1]: http://stackalytics.com/?module=ironic-group&user_id=kaifeng [2]: http://stackalytics.com/report/contribution/ironic-group/90 -------------- next part -------------- An HTML attachment was scrubbed... URL: From ichihara.hirofumi at gmail.com Sun Dec 2 14:08:25 2018 From: ichihara.hirofumi at gmail.com (Hirofumi Ichihara) Date: Sun, 2 Dec 2018 23:08:25 +0900 Subject: [openstack-dev] Stepping down from Neutron core team Message-ID: Hi all, I’m stepping down from the core team because my role changed and I cannot have responsibilities of neutron core. My start of neutron was 5 years ago. I had many good experiences from neutron team. Today neutron is great project. Neutron gets new reviewers, contributors and, users. Keep on being a great community. Thanks, Hirofumi -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From miguel at mlavalle.com Sun Dec 2 20:57:30 2018 From: miguel at mlavalle.com (Miguel Lavalle) Date: Sun, 2 Dec 2018 14:57:30 -0600 Subject: [openstack-dev] Stepping down from Neutron core team In-Reply-To: References: Message-ID: Hi Hirofumi, Thanks for your contributions to the project over these years. You will be missed. We also wish the best in your future endeavors. Best regards Miguel On Sun, Dec 2, 2018 at 8:11 AM Hirofumi Ichihara < ichihara.hirofumi at gmail.com> wrote: > Hi all, > > > I’m stepping down from the core team because my role changed and I cannot > have responsibilities of neutron core. > > > My start of neutron was 5 years ago. I had many good experiences from > neutron team. > > Today neutron is great project. Neutron gets new reviewers, contributors > and, users. > > Keep on being a great community. > > > Thanks, > > Hirofumi > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From gmann at ghanshyammann.com Mon Dec 3 01:24:11 2018 From: gmann at ghanshyammann.com (Ghanshyam Mann) Date: Mon, 03 Dec 2018 10:24:11 +0900 Subject: [dev][qa][devstack] Release management for QA toold and plugins In-Reply-To: <6be6bbf3-a862-df85-5120-b90f5c74c1cf@openstack.org> References: <20f06939-9590-4b93-3381-02c32570b990@openstack.org> <20181129191636.GA26514@sinanju.localdomain> <167627c0fb2.fedfd67828981.6889702971134127091@ghanshyammann.com> <167638457ad.fe9b8693739.8314446462346139058@ghanshyammann.com> <6be6bbf3-a862-df85-5120-b90f5c74c1cf@openstack.org> Message-ID: <16771aa6641.f7035e7c28699.479407897586326349@ghanshyammann.com> ---- On Fri, 30 Nov 2018 19:05:36 +0900 Thierry Carrez wrote ---- > Ghanshyam Mann wrote: > > ---- On Fri, 30 Nov 2018 14:29:24 +0900 Duc Truong wrote ---- > > > On Thu, Nov 29, 2018 at 6:39 PM Ghanshyam Mann wrote: > > > > > > > > > > * devstack-vagrant: never released, no change over the past year. Is it > > > > > > meant to be released in the future (cycle-independent) or considered > > > > > > continuously published (release-management:none) or should it be retired ? > > > > > > > > > > > > > I am ok to retire this based on no one using it. > > > > > > I actually use devstack-vagrant and find it useful to setup consistent > > > devstack environments with minimal effort. > > > > Ok, then we can keep that. I will be happy to add you as maintainer of that if you would like to. I saw you have done some commit and review in Tempest and will be good to have you as devstack-vagrant . > > OK so in summary: > > eslint-config-openstack, karma-subunit-reporter, devstack-tools -> > should be considered cycle-independent (with older releases history > imported). Any future release would be done through openstack/releases > > devstack-vagrant -> does not need releases or release management, will > be marked release-management:none in governance > > devstack-plugin-ceph -> does not need releases or cycle-related > branching, so will be marked release-management:none in governance > > Other devstack-plugins maintainers should pick whether they need to be > branched every cycle or not. Oslo-maintained plugins like > devstack-plugin-zmq and devstack-plugin-pika will, for example. > > Unless someone objects, I'll push the related changes where needed. > Thanks for the clarification ! +1. Those looks good. Thanks. -gmann > > -- > Thierry Carrez (ttx) > > From gmann at ghanshyammann.com Mon Dec 3 01:58:51 2018 From: gmann at ghanshyammann.com (Ghanshyam Mann) Date: Mon, 03 Dec 2018 10:58:51 +0900 Subject: [Interop-wg] [dev] [cinder] [qa] Strict Validation for Volume API using JSON Schema In-Reply-To: <8337FB0D-81D3-4E6C-9039-47BD749C3862@vmware.com> References: <16760426d56.ef4c345622903.2195899647060980382@ghanshyammann.com> <29d271ff-d5a7-2a28-53c1-3be7b868ad20@gmail.com> <8337FB0D-81D3-4E6C-9039-47BD749C3862@vmware.com> Message-ID: <16771ca2086.c57557fb28769.9145911937981210050@ghanshyammann.com> ---- On Sat, 01 Dec 2018 02:58:45 +0900 Mark Voelker wrote ---- > > > On Nov 29, 2018, at 9:28 PM, Matt Riedemann wrote: > > > > On 11/29/2018 10:17 AM, Ghanshyam Mann wrote: > >> - To improve the volume API testing to avoid the backward compatible changes. Sometime we accidentally change the API in backward incompatible way and strict validation with JSON schema help to block those. > > > > +1 this is very useful to avoid unintentionally breaking the API. > > > >> We want to hear from cinder and interop team about any impact of this change to them. > > > > I'm mostly interested in what the interop WG would do about this given it's a potentially breaking change for interop without changes to the guidelines. Would there be some sort of grace period for clouds to conform to the changes in tempest? > > > > That’s more or less what eventually happened when we began enforcing strict validation on Nova a few years ago after considerable debate. Clouds that were compliant with the interop guidelines before the strict validation patch landed and started failing once it went in could apply for a waiver while they worked on removing or upstreaming the nonstandard stuff. For those not familiar, here’s the patch that created a waiver program: > > https://review.openstack.org/#/c/333067/ > > Note that this expired with the 2017.01 Guideline: > > https://review.openstack.org/#/c/512447/ > > While not everyone was totally happy with the solution, it seemed to work out as a middle ground solution that helped get clouds on a better path in the end. I think we’ll discuss whether we’d need to do something like this again here. I’d love to hear: > > 1.) If anyone knows of clouds/products that would be fail interop testing because of this. Not looking to name and shame, just to get an idea of whether or not we have a concrete problem and how big it is. > > 2.) Opinions on how the waiver program went last time and whether the rest of the community feels like it’s something we should consider again. > > Personally I’m supportive of the general notion of improving API interoperability here…as usual it’s figuring out the mechanics of the transition that take a little figuring. =) Thanks Mark for response. I think point 1 is important, it is good to get the list of clouds or failure due to this this strict validation change. And accordingly, we can wait on Tempest side to merge those changes for this cycle (but personally I do not want to delay that if everything is fine), so that we can avoid the immediate failure of interop program. -gmann > > At Your Service, > > Mark T. Voelker > > > > -- > > > > Thanks, > > > > Matt > > > > _______________________________________________ > > Interop-wg mailing list > > Interop-wg at lists.openstack.org > > https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Flists.openstack.org%2Fcgi-bin%2Fmailman%2Flistinfo%2Finterop-wg&data=02%7C01%7Cmvoelker%40vmware.com%7C82a07fe28afe488c2eea08d6566b9734%7Cb39138ca3cee4b4aa4d6cd83d9dd62f0%7C0%7C0%7C636791417437738014&sdata=lEx%2BbbTVzC%2FRC7ebmARDrFhfMsToM7Rwx8EKYtE7iFM%3D&reserved=0 > > From lijie at unitedstack.com Mon Dec 3 02:02:05 2018 From: lijie at unitedstack.com (=?utf-8?B?UmFtYm8=?=) Date: Mon, 3 Dec 2018 10:02:05 +0800 Subject: [openstack-dev] [nova] about notification in nova Message-ID: Hi, all： I have a question about the notification in nova, that is the actual operator is different from the operator was record in panko. Such as the delete action, we create the VM as user1, and we delete the VM as user2， but the operator is user1 who delete the VM in panko event, not the actual operator user2. Can you tell me more about this?Thank you very much. Best Regards Rambo -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From dangtrinhnt at gmail.com Mon Dec 3 02:06:28 2018 From: dangtrinhnt at gmail.com (Trinh Nguyen) Date: Mon, 3 Dec 2018 11:06:28 +0900 Subject: [Searchlight] Meeting today at 13:30 UTC Message-ID: Hi team, We will have the team meeting today at 13:30 UTC on #openstack-searchlight. Please join me and the others! Bests, -- *Trinh Nguyen* *www.edlab.xyz * -------------- next part -------------- An HTML attachment was scrubbed... URL: From zbitter at redhat.com Mon Dec 3 03:24:42 2018 From: zbitter at redhat.com (Zane Bitter) Date: Mon, 3 Dec 2018 16:24:42 +1300 Subject: [forum][tc] Summary of the Vision for OpenStack Clouds session Message-ID: <7c223ec3-5deb-718f-573f-98903a40089c@redhat.com> During the Berlin summit there were a couple of discussions about the Vision for OpenStack Clouds, culminating in the initial version being merged. You can find it published here: https://governance.openstack.org/tc/reference/technical-vision.html During the joint leadership meeting on the Monday before the Summit, the TC presented the latest draft of the vision to the Foundation Board.[1] All of the feedback we received from board members was positive. Paper copies of the draft were available at the meeting, and it was also posted to the foundation mailing list afterwards.[2] This was followed on Thursday by a Forum session to discuss the next steps: https://etherpad.openstack.org/p/BER-cloud-vision With the review having already accumulated the required number of votes from the TC and nobody objecting, we determined that the next step should be to approve the draft and publish it. This is intended to be a living document, so in that spirit we'll continue to make ongoing tweaks based on feedback. A number of evolutionary improvements have been suggested (my summary): * (mordred) The SDK supports a use case where each Region in a cloud has its own Keystone endpoint, with the data synced behind the scenes. The definition of 'region' contained in the vision does not cover this. ayoung will submit a patch to update the wording. * (gmann) We could mention something about feature discovery in the section on OpenStack-specific considerations, to help ensure interoperability. * (fungi) We could also more explicitly declare that leaking implementation details into the API and beyond is something we're trying to avoid for interoperability reasons. fungi will submit a patch to do that. Doug also suggested that we should try to get this document incorporated into the main openstack.org website somehow, since the governance site is not especially visible even within the technical community and might as well not exist for those outside it. There are technical challenges with keeping a non-static document in sync to openstack.org, and publishing a forward-looking document like this verbatim to a wider audience might risk creating some confusion. However, it would be a shame to squander this opportunity for the technical community to collaborate more with the Foundation's marketing team in how we portray the goals of the OpenStack project. I will contact Lauren Sell on behalf of the TC to start a discussion on how we can make the best use of the document. [1] https://docs.google.com/presentation/d/1wcG7InY2A5y67dt5lC14CI1gQHGZ3db8-yshOu-STk8/edit?usp=sharing#slide=id.g46a6072f4a_0_276 [2] http://lists.openstack.org/pipermail/foundation/2018-November/002657.html From shiina.hironori at fujitsu.com Mon Dec 3 06:09:20 2018 From: shiina.hironori at fujitsu.com (shiina.hironori at fujitsu.com) Date: Mon, 3 Dec 2018 06:09:20 +0000 Subject: Proposing KaiFeng Wang for ironic-core In-Reply-To: References: Message-ID: +1 --- Hironori > -----Original Message----- > From: Julia Kreger [mailto:juliaashleykreger at gmail.com] > Sent: Sunday, December 2, 2018 11:44 PM > To: openstack-discuss at lists.openstack.org > Subject: Proposing KaiFeng Wang for ironic-core > > I'd like to propose adding KaiFeng to the ironic-core reviewer group. Previously, we had granted KaiFeng rights > on ironic-inspector-core and I personally think they have done a great job there. > > Kaifeng has also been reviewing other repositories in ironic's scope[1]. Their reviews and feedback have been > insightful and meaningful. They have also been very active[2] at reviewing which is an asset for any project. > > I believe they will be an awesome addition to the team. > > -Julia > > [1]: http://stackalytics.com/?module=ironic-group&user_id=kaifeng > > [2]: http://stackalytics.com/report/contribution/ironic-group/90 > From skaplons at redhat.com Mon Dec 3 08:09:48 2018 From: skaplons at redhat.com (Slawomir Kaplonski) Date: Mon, 3 Dec 2018 09:09:48 +0100 Subject: [openstack-dev] Stepping down from Neutron core team In-Reply-To: References: Message-ID: <1588BF61-D40E-4CD4-BB2E-BBDEEC8B5C75@redhat.com> Hi, Thanks for all Your work in Neutron and good luck in Your new role. — Slawek Kaplonski Senior software engineer Red Hat > Wiadomość napisana przez Hirofumi Ichihara w dniu 02.12.2018, o godz. 15:08: > > Hi all, > > I’m stepping down from the core team because my role changed and I cannot have responsibilities of neutron core. > > My start of neutron was 5 years ago. I had many good experiences from neutron team. > Today neutron is great project. Neutron gets new reviewers, contributors and, users. > Keep on being a great community. > > Thanks, > Hirofumi > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From bdobreli at redhat.com Mon Dec 3 09:34:50 2018 From: bdobreli at redhat.com (Bogdan Dobrelya) Date: Mon, 3 Dec 2018 10:34:50 +0100 Subject: [openstack-dev] [TripleO][Edge] Reduce base layer of containers for security and size of images (maintenance) sakes In-Reply-To: <1A3C52DFCD06494D8528644858247BF01C24B507@EX10MBOX03.pnnl.gov> References: <429cdff5-77b8-8417-8024-ef99ee2234dc@redhat.com> <48ec22eab4c90f248779b8bf7677b9a9a5bacc2f.camel@redhat.com> <4121346a-7341-184f-2dcb-32092409196b@redhat.com> <4efc561819a8ff90628902117e1514262f03b9cd.camel@redhat.com> <29497a3a-ce90-b7ec-d0f8-3f98c90016ce@redhat.com>

<7d2fce52ca8bb5156b753a95cbb9e2df7ad741c8.camel@redhat.com> <1A3C52DFCD06494D8528644858247BF01C24B507@EX10MBOX03.pnnl.gov> Message-ID: Hi Kevin. Puppet not only creates config files but also executes a service dependent steps, like db sync, so neither '[base] -> [puppet]' nor '[base] -> [service]' would not be enough on its own. That requires some services specific code to be included into *config* images as well. PS. There is a related spec [0] created by Dan, please take a look and propose you feedback [0] https://review.openstack.org/620062 On 11/30/18 6:48 PM, Fox, Kevin M wrote: > Still confused by: > [base] -> [service] -> [+ puppet] > not: > [base] -> [puppet] > and > [base] -> [service] > ? > > Thanks, > Kevin > ________________________________________ > From: Bogdan Dobrelya [bdobreli at redhat.com] > Sent: Friday, November 30, 2018 5:31 AM > To: Dan Prince; openstack-dev at lists.openstack.org; openstack-discuss at lists.openstack.org > Subject: Re: [openstack-dev] [TripleO][Edge] Reduce base layer of containers for security and size of images (maintenance) sakes > > On 11/30/18 1:52 PM, Dan Prince wrote: >> On Fri, 2018-11-30 at 10:31 +0100, Bogdan Dobrelya wrote: >>> On 11/29/18 6:42 PM, Jiří Stránský wrote: >>>> On 28. 11. 18 18:29, Bogdan Dobrelya wrote: >>>>> On 11/28/18 6:02 PM, Jiří Stránský wrote: >>>>>> >>>>>> >>>>>>> Reiterating again on previous points: >>>>>>> >>>>>>> -I'd be fine removing systemd. But lets do it properly and >>>>>>> not via 'rpm >>>>>>> -ev --nodeps'. >>>>>>> -Puppet and Ruby *are* required for configuration. We can >>>>>>> certainly put >>>>>>> them in a separate container outside of the runtime service >>>>>>> containers >>>>>>> but doing so would actually cost you much more >>>>>>> space/bandwidth for each >>>>>>> service container. As both of these have to get downloaded to >>>>>>> each node >>>>>>> anyway in order to generate config files with our current >>>>>>> mechanisms >>>>>>> I'm not sure this buys you anything. >>>>>> >>>>>> +1. I was actually under the impression that we concluded >>>>>> yesterday on >>>>>> IRC that this is the only thing that makes sense to seriously >>>>>> consider. >>>>>> But even then it's not a win-win -- we'd gain some security by >>>>>> leaner >>>>>> production images, but pay for it with space+bandwidth by >>>>>> duplicating >>>>>> image content (IOW we can help achieve one of the goals we had >>>>>> in mind >>>>>> by worsening the situation w/r/t the other goal we had in >>>>>> mind.) >>>>>> >>>>>> Personally i'm not sold yet but it's something that i'd >>>>>> consider if we >>>>>> got measurements of how much more space/bandwidth usage this >>>>>> would >>>>>> consume, and if we got some further details/examples about how >>>>>> serious >>>>>> are the security concerns if we leave config mgmt tools in >>>>>> runtime >>>>>> images. >>>>>> >>>>>> IIRC the other options (that were brought forward so far) were >>>>>> already >>>>>> dismissed in yesterday's IRC discussion and on the reviews. >>>>>> Bin/lib bind >>>>>> mounting being too hacky and fragile, and nsenter not really >>>>>> solving the >>>>>> problem (because it allows us to switch to having different >>>>>> bins/libs >>>>>> available, but it does not allow merging the availability of >>>>>> bins/libs >>>>>> from two containers into a single context). >>>>>> >>>>>>> We are going in circles here I think.... >>>>>> >>>>>> +1. I think too much of the discussion focuses on "why it's bad >>>>>> to have >>>>>> config tools in runtime images", but IMO we all sorta agree >>>>>> that it >>>>>> would be better not to have them there, if it came at no cost. >>>>>> >>>>>> I think to move forward, it would be interesting to know: if we >>>>>> do this >>>>>> (i'll borrow Dan's drawing): >>>>>> >>>>>>> base container| --> |service container| --> |service >>>>>>> container w/ >>>>>> Puppet installed| >>>>>> >>>>>> How much more space and bandwidth would this consume per node >>>>>> (e.g. >>>>>> separately per controller, per compute). This could help with >>>>>> decision >>>>>> making. >>>>> >>>>> As I've already evaluated in the related bug, that is: >>>>> >>>>> puppet-* modules and manifests ~ 16MB >>>>> puppet with dependencies ~61MB >>>>> dependencies of the seemingly largest a dependency, systemd >>>>> ~190MB >>>>> >>>>> that would be an extra layer size for each of the container >>>>> images to be >>>>> downloaded/fetched into registries. >>>> >>>> Thanks, i tried to do the math of the reduction vs. inflation in >>>> sizes >>>> as follows. I think the crucial point here is the layering. If we >>>> do >>>> this image layering: >>>> >>>>> base| --> |+ service| --> |+ Puppet| >>>> >>>> we'd drop ~267 MB from base image, but we'd be installing that to >>>> the >>>> topmost level, per-component, right? >>> >>> Given we detached systemd from puppet, cronie et al, that would be >>> 267-190MB, so the math below would be looking much better >> >> Would it be worth writing a spec that summarizes what action items are >> bing taken to optimize our base image with regards to the systemd? > > Perhaps it would be. But honestly, I see nothing biggie to require a > full blown spec. Just changing RPM deps and layers for containers > images. I'm tracking systemd changes here [0],[1],[2], btw (if accepted, > it should be working as of fedora28(or 29) I hope) > > [0] https://review.rdoproject.org/r/#/q/topic:base-container-reduction > [1] https://bugzilla.redhat.com/show_bug.cgi?id=1654659 > [2] https://bugzilla.redhat.com/show_bug.cgi?id=1654672 > > >> >> It seems like the general consenses is that cleaning up some of the RPM >> dependencies so that we don't install Systemd is the biggest win. >> >> What confuses me is why are there still patches posted to move Puppet >> out of the base layer when we agree moving it out of the base layer >> would actually cause our resulting container image set to be larger in >> size. >> >> Dan >> >> >>> >>>> In my basic deployment, undercloud seems to have 17 "components" >>>> (49 >>>> containers), overcloud controller 15 components (48 containers), >>>> and >>>> overcloud compute 4 components (7 containers). Accounting for >>>> overlaps, >>>> the total number of "components" used seems to be 19. (By >>>> "components" >>>> here i mean whatever uses a different ConfigImage than other >>>> services. I >>>> just eyeballed it but i think i'm not too far off the correct >>>> number.) >>>> >>>> So we'd subtract 267 MB from base image and add that to 19 leaf >>>> images >>>> used in this deployment. That means difference of +4.8 GB to the >>>> current >>>> image sizes. My /var/lib/registry dir on undercloud with all the >>>> images >>>> currently has 5.1 GB. We'd almost double that to 9.9 GB. >>>> >>>> Going from 5.1 to 9.9 GB seems like a lot of extra traffic for the >>>> CDNs >>>> (both external and e.g. internal within OpenStack Infra CI clouds). >>>> >>>> And for internal traffic between local registry and overcloud >>>> nodes, it >>>> gives +3.7 GB per controller and +800 MB per compute. That may not >>>> be so >>>> critical but still feels like a considerable downside. >>>> >>>> Another gut feeling is that this way of image layering would take >>>> longer >>>> time to build and to run the modify-image Ansible role which we use >>>> in >>>> CI, so that could endanger how our CI jobs fit into the time limit. >>>> We >>>> could also probably measure this but i'm not sure if it's worth >>>> spending >>>> the time. >>>> >>>> All in all i'd argue we should be looking at different options >>>> still. >>>> >>>>> Given that we should decouple systemd from all/some of the >>>>> dependencies >>>>> (an example topic for RDO [0]), that could save a 190MB. But it >>>>> seems we >>>>> cannot break the love of puppet and systemd as it heavily relies >>>>> on the >>>>> latter and changing packaging like that would higly likely affect >>>>> baremetal deployments with puppet and systemd co-operating. >>>> >>>> Ack :/ >>>> >>>>> Long story short, we cannot shoot both rabbits with a single >>>>> shot, not >>>>> with puppet :) May be we could with ansible replacing puppet >>>>> fully... >>>>> So splitting config and runtime images is the only choice yet to >>>>> address >>>>> the raised security concerns. And let's forget about edge cases >>>>> for now. >>>>> Tossing around a pair of extra bytes over 40,000 WAN-distributed >>>>> computes ain't gonna be our the biggest problem for sure. >>>>> >>>>> [0] >>>>> https://review.rdoproject.org/r/#/q/topic:base-container-reduction >>>>> >>>>>>> Dan >>>>>>> >>>>>> >>>>>> Thanks >>>>>> >>>>>> Jirka >>>>>> >>>>>> _______________________________________________________________ >>>>>> ___________ >>>>>> >>>>>> OpenStack Development Mailing List (not for usage questions) >>>>>> Unsubscribe: >>>>>> OpenStack-dev-request at lists.openstack.org?subject:unsubscribe >>>>>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev >>>> >>>> ___________________________________________________________________ >>>> _______ >>>> OpenStack Development Mailing List (not for usage questions) >>>> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsu >>>> bscribe >>>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev >>> >>> >> > > > -- > Best regards, > Bogdan Dobrelya, > Irc #bogdando > -- Best regards, Bogdan Dobrelya, Irc #bogdando From bdobreli at redhat.com Mon Dec 3 09:37:57 2018 From: bdobreli at redhat.com (Bogdan Dobrelya) Date: Mon, 3 Dec 2018 10:37:57 +0100 Subject: [openstack-dev] [TripleO][Edge] Reduce base layer of containers for security and size of images (maintenance) sakes In-Reply-To: References: <429cdff5-77b8-8417-8024-ef99ee2234dc@redhat.com> <48ec22eab4c90f248779b8bf7677b9a9a5bacc2f.camel@redhat.com> <4121346a-7341-184f-2dcb-32092409196b@redhat.com> <4efc561819a8ff90628902117e1514262f03b9cd.camel@redhat.com> <29497a3a-ce90-b7ec-d0f8-3f98c90016ce@redhat.com>

<7d2fce52ca8bb5156b753a95cbb9e2df7ad741c8.camel@redhat.com> <1A3C52DFCD06494D8528644858247BF01C24B507@EX10MBOX03.pnnl.gov> Message-ID: On 12/3/18 10:34 AM, Bogdan Dobrelya wrote: > Hi Kevin. > Puppet not only creates config files but also executes a service > dependent steps, like db sync, so neither '[base] -> [puppet]' nor > '[base] -> [service]' would not be enough on its own. That requires some > services specific code to be included into *config* images as well. > > PS. There is a related spec [0] created by Dan, please take a look and > propose you feedback > > [0] https://review.openstack.org/620062 I'm terribly sorry, but that's a corrected link [0] to that spec. [0] https://review.openstack.org/620909 > > On 11/30/18 6:48 PM, Fox, Kevin M wrote: >> Still confused by: >> [base] -> [service] -> [+ puppet] >> not: >> [base] -> [puppet] >> and >> [base] -> [service] >> ? >> >> Thanks, >> Kevin >> ________________________________________ >> From: Bogdan Dobrelya [bdobreli at redhat.com] >> Sent: Friday, November 30, 2018 5:31 AM >> To: Dan Prince; openstack-dev at lists.openstack.org; >> openstack-discuss at lists.openstack.org >> Subject: Re: [openstack-dev] [TripleO][Edge] Reduce base layer of >> containers for security and size of images (maintenance) sakes >> >> On 11/30/18 1:52 PM, Dan Prince wrote: >>> On Fri, 2018-11-30 at 10:31 +0100, Bogdan Dobrelya wrote: >>>> On 11/29/18 6:42 PM, Jiří Stránský wrote: >>>>> On 28. 11. 18 18:29, Bogdan Dobrelya wrote: >>>>>> On 11/28/18 6:02 PM, Jiří Stránský wrote: >>>>>>> >>>>>>> >>>>>>>> Reiterating again on previous points: >>>>>>>> >>>>>>>> -I'd be fine removing systemd. But lets do it properly and >>>>>>>> not via 'rpm >>>>>>>> -ev --nodeps'. >>>>>>>> -Puppet and Ruby *are* required for configuration. We can >>>>>>>> certainly put >>>>>>>> them in a separate container outside of the runtime service >>>>>>>> containers >>>>>>>> but doing so would actually cost you much more >>>>>>>> space/bandwidth for each >>>>>>>> service container. As both of these have to get downloaded to >>>>>>>> each node >>>>>>>> anyway in order to generate config files with our current >>>>>>>> mechanisms >>>>>>>> I'm not sure this buys you anything. >>>>>>> >>>>>>> +1. I was actually under the impression that we concluded >>>>>>> yesterday on >>>>>>> IRC that this is the only thing that makes sense to seriously >>>>>>> consider. >>>>>>> But even then it's not a win-win -- we'd gain some security by >>>>>>> leaner >>>>>>> production images, but pay for it with space+bandwidth by >>>>>>> duplicating >>>>>>> image content (IOW we can help achieve one of the goals we had >>>>>>> in mind >>>>>>> by worsening the situation w/r/t the other goal we had in >>>>>>> mind.) >>>>>>> >>>>>>> Personally i'm not sold yet but it's something that i'd >>>>>>> consider if we >>>>>>> got measurements of how much more space/bandwidth usage this >>>>>>> would >>>>>>> consume, and if we got some further details/examples about how >>>>>>> serious >>>>>>> are the security concerns if we leave config mgmt tools in >>>>>>> runtime >>>>>>> images. >>>>>>> >>>>>>> IIRC the other options (that were brought forward so far) were >>>>>>> already >>>>>>> dismissed in yesterday's IRC discussion and on the reviews. >>>>>>> Bin/lib bind >>>>>>> mounting being too hacky and fragile, and nsenter not really >>>>>>> solving the >>>>>>> problem (because it allows us to switch to having different >>>>>>> bins/libs >>>>>>> available, but it does not allow merging the availability of >>>>>>> bins/libs >>>>>>> from two containers into a single context). >>>>>>> >>>>>>>> We are going in circles here I think.... >>>>>>> >>>>>>> +1. I think too much of the discussion focuses on "why it's bad >>>>>>> to have >>>>>>> config tools in runtime images", but IMO we all sorta agree >>>>>>> that it >>>>>>> would be better not to have them there, if it came at no cost. >>>>>>> >>>>>>> I think to move forward, it would be interesting to know: if we >>>>>>> do this >>>>>>> (i'll borrow Dan's drawing): >>>>>>> >>>>>>>> base container| --> |service container| --> |service >>>>>>>> container w/ >>>>>>> Puppet installed| >>>>>>> >>>>>>> How much more space and bandwidth would this consume per node >>>>>>> (e.g. >>>>>>> separately per controller, per compute). This could help with >>>>>>> decision >>>>>>> making. >>>>>> >>>>>> As I've already evaluated in the related bug, that is: >>>>>> >>>>>> puppet-* modules and manifests ~ 16MB >>>>>> puppet with dependencies ~61MB >>>>>> dependencies of the seemingly largest a dependency, systemd >>>>>> ~190MB >>>>>> >>>>>> that would be an extra layer size for each of the container >>>>>> images to be >>>>>> downloaded/fetched into registries. >>>>> >>>>> Thanks, i tried to do the math of the reduction vs. inflation in >>>>> sizes >>>>> as follows. I think the crucial point here is the layering. If we >>>>> do >>>>> this image layering: >>>>> >>>>>> base| --> |+ service| --> |+ Puppet| >>>>> >>>>> we'd drop ~267 MB from base image, but we'd be installing that to >>>>> the >>>>> topmost level, per-component, right? >>>> >>>> Given we detached systemd from puppet, cronie et al, that would be >>>> 267-190MB, so the math below would be looking much better >>> >>> Would it be worth writing a spec that summarizes what action items are >>> bing taken to optimize our base image with regards to the systemd? >> >> Perhaps it would be. But honestly, I see nothing biggie to require a >> full blown spec. Just changing RPM deps and layers for containers >> images. I'm tracking systemd changes here [0],[1],[2], btw (if accepted, >> it should be working as of fedora28(or 29) I hope) >> >> [0] https://review.rdoproject.org/r/#/q/topic:base-container-reduction >> [1] https://bugzilla.redhat.com/show_bug.cgi?id=1654659 >> [2] https://bugzilla.redhat.com/show_bug.cgi?id=1654672 >> >> >>> >>> It seems like the general consenses is that cleaning up some of the RPM >>> dependencies so that we don't install Systemd is the biggest win. >>> >>> What confuses me is why are there still patches posted to move Puppet >>> out of the base layer when we agree moving it out of the base layer >>> would actually cause our resulting container image set to be larger in >>> size. >>> >>> Dan >>> >>> >>>> >>>>> In my basic deployment, undercloud seems to have 17 "components" >>>>> (49 >>>>> containers), overcloud controller 15 components (48 containers), >>>>> and >>>>> overcloud compute 4 components (7 containers). Accounting for >>>>> overlaps, >>>>> the total number of "components" used seems to be 19. (By >>>>> "components" >>>>> here i mean whatever uses a different ConfigImage than other >>>>> services. I >>>>> just eyeballed it but i think i'm not too far off the correct >>>>> number.) >>>>> >>>>> So we'd subtract 267 MB from base image and add that to 19 leaf >>>>> images >>>>> used in this deployment. That means difference of +4.8 GB to the >>>>> current >>>>> image sizes. My /var/lib/registry dir on undercloud with all the >>>>> images >>>>> currently has 5.1 GB. We'd almost double that to 9.9 GB. >>>>> >>>>> Going from 5.1 to 9.9 GB seems like a lot of extra traffic for the >>>>> CDNs >>>>> (both external and e.g. internal within OpenStack Infra CI clouds). >>>>> >>>>> And for internal traffic between local registry and overcloud >>>>> nodes, it >>>>> gives +3.7 GB per controller and +800 MB per compute. That may not >>>>> be so >>>>> critical but still feels like a considerable downside. >>>>> >>>>> Another gut feeling is that this way of image layering would take >>>>> longer >>>>> time to build and to run the modify-image Ansible role which we use >>>>> in >>>>> CI, so that could endanger how our CI jobs fit into the time limit. >>>>> We >>>>> could also probably measure this but i'm not sure if it's worth >>>>> spending >>>>> the time. >>>>> >>>>> All in all i'd argue we should be looking at different options >>>>> still. >>>>> >>>>>> Given that we should decouple systemd from all/some of the >>>>>> dependencies >>>>>> (an example topic for RDO [0]), that could save a 190MB. But it >>>>>> seems we >>>>>> cannot break the love of puppet and systemd as it heavily relies >>>>>> on the >>>>>> latter and changing packaging like that would higly likely affect >>>>>> baremetal deployments with puppet and systemd co-operating. >>>>> >>>>> Ack :/ >>>>> >>>>>> Long story short, we cannot shoot both rabbits with a single >>>>>> shot, not >>>>>> with puppet :) May be we could with ansible replacing puppet >>>>>> fully... >>>>>> So splitting config and runtime images is the only choice yet to >>>>>> address >>>>>> the raised security concerns. And let's forget about edge cases >>>>>> for now. >>>>>> Tossing around a pair of extra bytes over 40,000 WAN-distributed >>>>>> computes ain't gonna be our the biggest problem for sure. >>>>>> >>>>>> [0] >>>>>> https://review.rdoproject.org/r/#/q/topic:base-container-reduction >>>>>> >>>>>>>> Dan >>>>>>>> >>>>>>> >>>>>>> Thanks >>>>>>> >>>>>>> Jirka >>>>>>> >>>>>>> _______________________________________________________________ >>>>>>> ___________ >>>>>>> >>>>>>> OpenStack Development Mailing List (not for usage questions) >>>>>>> Unsubscribe: >>>>>>> OpenStack-dev-request at lists.openstack.org?subject:unsubscribe >>>>>>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev >>>>> >>>>> ___________________________________________________________________ >>>>> _______ >>>>> OpenStack Development Mailing List (not for usage questions) >>>>> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsu >>>>> bscribe >>>>> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev >>>> >>>> >>> >> >> >> -- >> Best regards, >> Bogdan Dobrelya, >> Irc #bogdando >> > > -- Best regards, Bogdan Dobrelya, Irc #bogdando From tenobreg at redhat.com Mon Dec 3 12:06:46 2018 From: tenobreg at redhat.com (Telles Nobrega) Date: Mon, 3 Dec 2018 09:06:46 -0300 Subject: [openstack-dev][sahara] Sahara APIv2 Worklist Message-ID: Hi Saharans, One of the main focus of this cycle, and it has been for a while now, is the work on APIv2. During the last Sahara meeting we came up with a list of the reamining work left so we can release APIv2 as stable this cycle. I created a worklist[1] on storyboard so we can more easily track the progress of the few remaining tasks. Thanks all, [1] https://storyboard.openstack.org/#!/worklist/533 -- TELLES NOBREGA SOFTWARE ENGINEER Red Hat Brasil Av. Brg. Faria Lima, 3900 - 8º andar - Itaim Bibi, São Paulo tenobreg at redhat.com TRIED. TESTED. TRUSTED. Red Hat é reconhecida entre as melhores empresas para trabalhar no Brasil pelo Great Place to Work. -------------- next part -------------- An HTML attachment was scrubbed... URL: From ranjankrchaubey at gmail.com Mon Dec 3 01:57:25 2018 From: ranjankrchaubey at gmail.com (Ranjan Krchaubey) Date: Mon, 3 Dec 2018 07:27:25 +0530 Subject: [openstack-dev] Stepping down from Neutron core team In-Reply-To: References:

Message-ID: <1778B743-99D8-4735-B057-6C19A457BF05@gmail.com> Hi Team , I am getting error of Http 500 server not fullfill request by id please help me how to fix Thanks & Regards Ranjan Kumar Mob: 9284158762 > On 03-Dec-2018, at 2:27 AM, Miguel Lavalle wrote: > > Hi Hirofumi, > > Thanks for your contributions to the project over these years. You will be missed. We also wish the best in your future endeavors. > > Best regards > > Miguel > >> On Sun, Dec 2, 2018 at 8:11 AM Hirofumi Ichihara wrote: >> Hi all, >> >> I’m stepping down from the core team because my role changed and I cannot have responsibilities of neutron core. >> >> My start of neutron was 5 years ago. I had many good experiences from neutron team. >> Today neutron is great project. Neutron gets new reviewers, contributors and, users. >> Keep on being a great community. >> >> Thanks, >> Hirofumi >> __________________________________________________________________________ >> OpenStack Development Mailing List (not for usage questions) >> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe >> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From zhengzhenyulixi at gmail.com Mon Dec 3 02:31:02 2018 From: zhengzhenyulixi at gmail.com (Zhenyu Zheng) Date: Mon, 3 Dec 2018 10:31:02 +0800 Subject: [openstack-dev] [nova] about notification in nova In-Reply-To: References: Message-ID: Hi, Are you using versioned notification? If you are using versioned nofitication, you should get an ``action_initiator_user`` and an ``action_initiator_project`` indicating who initiated this action, we had them since I649d8a27baa8840bc1bb567fef027c749c663432 . If you are not using versioned notification, then versioned notification will be recommanded. Thanks On Mon, Dec 3, 2018 at 10:06 AM Rambo wrote: > Hi, all： > I have a question about the notification in nova, that is the > actual operator is different from the operator was record in panko. Such > as the delete action, we create the VM as user1, and we delete the VM as > user2， but the operator is user1 who delete the VM in panko event, not the > actual operator user2. > Can you tell me more about this?Thank you very much. > > > > > > > > > Best Regards > Rambo > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From ranjankrchaubey at gmail.com Mon Dec 3 02:40:06 2018 From: ranjankrchaubey at gmail.com (Ranjan Krchaubey) Date: Mon, 3 Dec 2018 08:10:06 +0530 Subject: [openstack-dev] [nova] about notification in nova In-Reply-To: References:

Message-ID: <07726B1E-643C-40CF-A7E9-D906B909699F@gmail.com> This regarding keystone ? Thanks & Regards Ranjan Kumar Mob: 9284158762 > On 03-Dec-2018, at 8:01 AM, Zhenyu Zheng wrote: > > Hi, > > Are you using versioned notification? If you are using versioned nofitication, you should get an ``action_initiator_user`` and an ``action_initiator_project`` > indicating who initiated this action, we had them since I649d8a27baa8840bc1bb567fef027c749c663432 . If you are not using versioned notification, then > versioned notification will be recommanded. > > Thanks > >> On Mon, Dec 3, 2018 at 10:06 AM Rambo wrote: >> Hi, all： >> I have a question about the notification in nova, that is the actual operator is different from the operator was record in panko. Such as the delete action, we create the VM as user1, and we delete the VM as user2， but the operator is user1 who delete the VM in panko event, not the actual operator user2. >> Can you tell me more about this?Thank you very much. >> >> >> >> >> >> >> >> >> Best Regards >> Rambo >> __________________________________________________________________________ >> OpenStack Development Mailing List (not for usage questions) >> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe >> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From ranjankrchaubey at gmail.com Mon Dec 3 13:06:06 2018 From: ranjankrchaubey at gmail.com (Ranjan Krchaubey) Date: Mon, 3 Dec 2018 18:36:06 +0530 Subject: [openstack-dev] Stepping down from Neutron core team In-Reply-To: <1588BF61-D40E-4CD4-BB2E-BBDEEC8B5C75@redhat.com> References: <1588BF61-D40E-4CD4-BB2E-BBDEEC8B5C75@redhat.com> Message-ID: Hi all, Can any one help me to resvolve error 111 on keystone Thanks & Regards Ranjan Kumar Mob: 9284158762 > On 03-Dec-2018, at 1:39 PM, Slawomir Kaplonski wrote: > > Hi, > > Thanks for all Your work in Neutron and good luck in Your new role. > > — > Slawek Kaplonski > Senior software engineer > Red Hat > >> Wiadomość napisana przez Hirofumi Ichihara w dniu 02.12.2018, o godz. 15:08: >> >> Hi all, >> >> I’m stepping down from the core team because my role changed and I cannot have responsibilities of neutron core. >> >> My start of neutron was 5 years ago. I had many good experiences from neutron team. >> Today neutron is great project. Neutron gets new reviewers, contributors and, users. >> Keep on being a great community. >> >> Thanks, >> Hirofumi >> __________________________________________________________________________ >> OpenStack Development Mailing List (not for usage questions) >> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe >> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev > > > __________________________________________________________________________ > OpenStack Development Mailing List (not for usage questions) > Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From jim at jimrollenhagen.com Mon Dec 3 13:19:38 2018 From: jim at jimrollenhagen.com (Jim Rollenhagen) Date: Mon, 3 Dec 2018 08:19:38 -0500 Subject: Proposing KaiFeng Wang for ironic-core In-Reply-To: References: Message-ID: On Sun, Dec 2, 2018 at 9:46 AM Julia Kreger wrote: > I'd like to propose adding KaiFeng to the ironic-core reviewer group. > Previously, we had granted KaiFeng rights on ironic-inspector-core and I > personally think they have done a great job there. > > Kaifeng has also been reviewing other repositories in ironic's scope[1]. > Their reviews and feedback have been insightful and meaningful. They have > also been very active[2] at reviewing which is an asset for any project. > > I believe they will be an awesome addition to the team. > +2! // jim > > -Julia > > [1]: http://stackalytics.com/?module=ironic-group&user_id=kaifeng > [2]: http://stackalytics.com/report/contribution/ironic-group/90 > -------------- next part -------------- An HTML attachment was scrubbed... URL: From dangtrinhnt at gmail.com Mon Dec 3 13:24:28 2018 From: dangtrinhnt at gmail.com (Trinh Nguyen) Date: Mon, 3 Dec 2018 22:24:28 +0900 Subject: [Searchlight] Cancel meeting today Message-ID: Hi team, Everybody is busy today so we will cancel the meeting today. Please ping me on the channel #openstack-searchlight. Bests, -- *Trinh Nguyen* *www.edlab.xyz * -------------- next part -------------- An HTML attachment was scrubbed... URL: From mnaser at vexxhost.com Mon Dec 3 13:25:51 2018 From: mnaser at vexxhost.com (Mohammed Naser) Date: Mon, 3 Dec 2018 08:25:51 -0500 Subject: [openstack-ansible] Evaluating meeting schedule + method In-Reply-To: References: <1913981.aYPTVNe1F8@whitebase.usersys.redhat.com> <8c59e2dbcd07bda4d4e12952e5d5af0bf8c839f2.camel@evrard.me> Message-ID: On Wed, Nov 28, 2018 at 10:55 AM Michael McCune wrote: > On Wed, Nov 28, 2018 at 4:49 AM Jean-Philippe Evrard > wrote: > > Having an office hour there could ensure people could come to a certain > > time and we'd be there. Attendance would be identitical though, but > > it's not really an issue to me. > > > > just wanted to add another data point here. the API-SIG recently > migrated from regular meeting times to office hours. one of the big > reasons for this was that our regular weekly meeting attendance had > dropped to minimal levels. so far we've found that the office hours > have lessened the strain on the chairs and organizers while still > giving us a few very visible times for the community to interact with > us. > > the API-SIG isn't quite the same as a code central project, but i > think the pattern of meeting migration is more general in nature. hope > this helps =) > > peace o/ > > Unfortunately, I haven't heard a lot of the OpenStack Ansible side of things however I'm very happy to hear about what's going on with other projects and how to pick ways to manage our meetings. The first step that I'd like to maybe suggest is going to an office hours model? I'm still not sure how that will increase our engagement in meetings. -- Mohammed Naser — vexxhost ----------------------------------------------------- D. 514-316-8872 D. 800-910-1726 ext. 200 E. mnaser at vexxhost.com W. http://vexxhost.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From jaypipes at gmail.com Mon Dec 3 13:59:13 2018 From: jaypipes at gmail.com (Jay Pipes) Date: Mon, 3 Dec 2018 08:59:13 -0500 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: On 11/30/2018 05:52 PM, Mike Carden wrote: > > Have you set the placement_randomize_allocation_candidates CONF option > and are still seeing the packing behaviour? > > > No I haven't. Where would be the place to do that? In a nova.conf > somewhere that the nova-scheduler containers on the controller hosts > could pick it up? > > Just about to deploy for realz with about forty x86 compute nodes, so it > would be really nice to sort this first. :) Presuming you are deploying Rocky or Queens, It goes in the nova.conf file under the [placement] section: randomize_allocation_candidates = true The nova.conf file should be the one used by nova-scheduler. Best, -jay From gryf73 at gmail.com Mon Dec 3 14:08:19 2018 From: gryf73 at gmail.com (Roman Dobosz) Date: Mon, 3 Dec 2018 15:08:19 +0100 Subject: [nova][ops] Migrating instances with old extra specs info. Message-ID: Hi, We have an issue regarding live migrate old instances. On our infrastructure based on Newton, we had not well named our aggregation groups and we decided to completely change the naming conventions. We are using extra specs/metadata in flavors/aggregates and AggregateInstanceExtraSpecsFilter to select the set of hosts. After changing one of the key (lets call it 'kind') of extra spec/metadata to the new value, we are able to create new instances, but unable to live-migrate old one. This is because of stored flavor extra specs in instance_extra, which still holds the old value for the 'kind' key, and make the aggregate filter fail to match the hosts. In our opinion, it should be able to live-migrate such instance, since only the flavor metadata has changed, while other fields doesn't (vcpus, memory, disk). Is it a bug? Or maybe it is possible to change the instance flavor extra spec? -- Cheers, Roman Dobosz From nate.johnston at redhat.com Mon Dec 3 14:15:06 2018 From: nate.johnston at redhat.com (Nate Johnston) Date: Mon, 3 Dec 2018 09:15:06 -0500 Subject: [openstack-dev] Stepping down from Neutron core team In-Reply-To: References: Message-ID: <20181203141506.usaxv36gz56f4vic@bishop> On Sun, Dec 02, 2018 at 11:08:25PM +0900, Hirofumi Ichihara wrote: > I’m stepping down from the core team because my role changed and I cannot > have responsibilities of neutron core. Thank you very much for all of the insightful reviews over the years. Good luck on your next adventure! Nate Johnston (njohnston) __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From doug at doughellmann.com Mon Dec 3 14:53:59 2018 From: doug at doughellmann.com (Doug Hellmann) Date: Mon, 03 Dec 2018 09:53:59 -0500 Subject: [goal][python3] week R-18 update Message-ID: This is the weekly update for the "Run under Python 3 by default" goal (https://governance.openstack.org/tc/goals/stein/python3-first.html). I've missed sending this email for a few weeks again, due to the Summit, holiday, and then illness. == Ongoing and Completed Work == We're still making good progress, but several teams have a ways to go on the tox defaults patches and 3.6 unit tests. Please prioritize these reviews so we can move on to the more complicated parts of the goal! +---------------------+--------------+---------+----------+---------+------------+-------+--------------------+ | Team | tox defaults | Docs | 3.6 unit | Failing | Unreviewed | Total | Champion | +---------------------+--------------+---------+----------+---------+------------+-------+--------------------+ | adjutant | 1/ 1 | - | + | 0 | 1 | 2 | Doug Hellmann | | barbican | + | 1/ 3 | + | 1 | 1 | 7 | Doug Hellmann | | blazar | + | + | + | 0 | 0 | 9 | Nguyen Hai | | Chef OpenStack | + | - | - | 0 | 0 | 2 | Doug Hellmann | | cinder | + | + | + | 0 | 0 | 11 | Doug Hellmann | | cloudkitty | + | + | + | 0 | 0 | 9 | Doug Hellmann | | congress | + | + | + | 0 | 0 | 9 | Nguyen Hai | | cyborg | + | + | + | 0 | 0 | 7 | Nguyen Hai | | designate | + | + | + | 0 | 0 | 9 | Nguyen Hai | | Documentation | + | + | + | 0 | 0 | 10 | Doug Hellmann | | ec2-api | + | + | + | 0 | 0 | 7 | | | freezer | + | + | + | 0 | 0 | 11 | | | glance | + | + | + | 0 | 0 | 10 | Nguyen Hai | | heat | 2/ 8 | + | 1/ 7 | 1 | 0 | 21 | Doug Hellmann | | horizon | + | + | + | 0 | 0 | 34 | Nguyen Hai | | I18n | + | - | - | 0 | 0 | 1 | Doug Hellmann | | InteropWG | 2/ 3 | + | 1/ 3 | 1 | 1 | 9 | Doug Hellmann | | ironic | 1/ 10 | + | + | 0 | 0 | 35 | Doug Hellmann | | karbor | + | + | + | 0 | 0 | 7 | Nguyen Hai | | keystone | + | + | + | 0 | 0 | 18 | Doug Hellmann | | kolla | + | + | + | 0 | 0 | 5 | | | kuryr | + | + | + | 0 | 0 | 9 | Doug Hellmann | | magnum | 2/ 5 | + | + | 0 | 1 | 10 | | | manila | + | + | + | 0 | 0 | 13 | Goutham Pacha Ravi | | masakari | 2/ 5 | + | - | 0 | 2 | 6 | Nguyen Hai | | mistral | + | + | + | 0 | 0 | 13 | Nguyen Hai | | monasca | 1/ 17 | + | + | 0 | 1 | 34 | Doug Hellmann | | murano | + | + | + | 0 | 0 | 14 | | | neutron | 5/ 19 | 1/ 14 | 1/ 13 | 4 | 3 | 46 | Doug Hellmann | | nova | + | + | + | 0 | 0 | 14 | | | octavia | + | + | + | 0 | 0 | 12 | Nguyen Hai | | OpenStack Charms | 8/ 73 | - | - | 8 | 3 | 73 | Doug Hellmann | | OpenStack-Helm | + | + | - | 0 | 0 | 4 | | | OpenStackAnsible | + | + | - | 0 | 0 | 152 | | | OpenStackClient | + | + | + | 0 | 0 | 11 | | | OpenStackSDK | + | + | + | 0 | 0 | 10 | | | oslo | + | + | + | 0 | 0 | 63 | Doug Hellmann | | Packaging-rpm | + | + | + | 0 | 0 | 6 | Doug Hellmann | | PowerVMStackers | - | - | + | 0 | 0 | 3 | Doug Hellmann | | Puppet OpenStack | + | + | - | 0 | 0 | 44 | Doug Hellmann | | qinling | + | + | + | 0 | 0 | 6 | | | Quality Assurance | 3/ 11 | + | + | 0 | 2 | 32 | Doug Hellmann | | rally | 1/ 3 | + | - | 1 | 1 | 5 | Nguyen Hai | | Release Management | - | - | + | 0 | 0 | 1 | Doug Hellmann | | requirements | - | + | + | 0 | 0 | 2 | Doug Hellmann | | sahara | 1/ 6 | + | + | 0 | 0 | 13 | Doug Hellmann | | searchlight | + | + | + | 0 | 0 | 9 | Nguyen Hai | | senlin | + | + | + | 0 | 0 | 9 | Nguyen Hai | | SIGs | + | + | + | 0 | 0 | 13 | Doug Hellmann | | solum | + | + | + | 0 | 0 | 7 | Nguyen Hai | | storlets | + | + | + | 0 | 0 | 4 | | | swift | 2/ 3 | + | + | 1 | 1 | 6 | Nguyen Hai | | tacker | 1/ 3 | + | + | 0 | 1 | 8 | Nguyen Hai | | Technical Committee | + | - | + | 0 | 0 | 4 | Doug Hellmann | | Telemetry | 1/ 7 | + | + | 0 | 1 | 19 | Doug Hellmann | | tricircle | + | + | + | 0 | 0 | 5 | Nguyen Hai | | tripleo | 5/ 55 | + | + | 3 | 1 | 93 | Doug Hellmann | | trove | 1/ 5 | + | + | 0 | 0 | 11 | Doug Hellmann | | User Committee | 3/ 3 | + | - | 0 | 2 | 5 | Doug Hellmann | | vitrage | + | + | + | 0 | 0 | 9 | Nguyen Hai | | watcher | + | + | + | 0 | 0 | 10 | Nguyen Hai | | winstackers | + | + | + | 0 | 0 | 6 | | | zaqar | + | + | + | 0 | 0 | 8 | | | zun | + | + | + | 0 | 0 | 8 | Nguyen Hai | | | 43/ 61 | 55/ 57 | 52/ 55 | 20 | 22 | 1075 | | +---------------------+--------------+---------+----------+---------+------------+-------+--------------------+ == Next Steps == We need to to approve the patches proposed by the goal champions, and then to expand functional test coverage for python 3. PTLs, please document your team's status in the wiki as well: https://wiki.openstack.org/wiki/Python3 == How can you help? == 1. Choose a patch that has failing tests and help fix it. https://review.openstack.org/#/q/topic:python3-first+status:open+(+label:Verified-1+OR+label:Verified-2+) 2. Review the patches for the zuul changes. Keep in mind that some of those patches will be on the stable branches for projects. 3. Work on adding functional test jobs that run under Python 3. == How can you ask for help? == If you have any questions, please post them here to the openstack-dev list with the topic tag [python3] in the subject line. Posting questions to the mailing list will give the widest audience the chance to see the answers. We are using the #openstack-dev IRC channel for discussion as well, but I'm not sure how good our timezone coverage is so it's probably better to use the mailing list. == Reference Material == Goal description: https://governance.openstack.org/tc/goals/stein/python3-first.html Open patches needing reviews: https://review.openstack.org/#/q/topic:python3-first+is:open Storyboard: https://storyboard.openstack.org/#!/board/104 Zuul migration notes: https://etherpad.openstack.org/p/python3-first Zuul migration tracking: https://storyboard.openstack.org/#!/story/2002586 Python 3 Wiki page: https://wiki.openstack.org/wiki/Python3 -- Doug From jaypipes at gmail.com Mon Dec 3 15:07:18 2018 From: jaypipes at gmail.com (Jay Pipes) Date: Mon, 3 Dec 2018 10:07:18 -0500 Subject: [nova][ops] Migrating instances with old extra specs info. In-Reply-To: References: Message-ID: On 12/03/2018 09:08 AM, Roman Dobosz wrote: > Hi, > > We have an issue regarding live migrate old instances. > > On our infrastructure based on Newton, we had not well named our > aggregation groups and we decided to completely change the naming > conventions. We are using extra specs/metadata in flavors/aggregates and > AggregateInstanceExtraSpecsFilter to select the set of hosts. > > After changing one of the key (lets call it 'kind') of extra > spec/metadata to the new value, we are able to create new instances, but > unable to live-migrate old one. This is because of stored flavor extra > specs in instance_extra, which still holds the old value for the 'kind' > key, and make the aggregate filter fail to match the hosts. > > In our opinion, it should be able to live-migrate such instance, since > only the flavor metadata has changed, while other fields doesn't (vcpus, > memory, disk). > > Is it a bug? Or maybe it is possible to change the instance flavor > extra spec? Not sure it's a bug, per-se... might just be something you need to manually change database records for, though. Sucks, since it's hacky, but not sure if it's something we should change in the API contract. Best, -jay From dangtrinhnt at gmail.com Mon Dec 3 15:28:30 2018 From: dangtrinhnt at gmail.com (Trinh Nguyen) Date: Tue, 4 Dec 2018 00:28:30 +0900 Subject: [Searchlight][Zuul] tox failed tests at zuul check only Message-ID: Hello, Currently, [1] fails tox py27 tests on Zuul check for just updating the log text. The tests are successful at local dev env. Just wondering there is any new change at Zuul CI? [1] https://review.openstack.org/#/c/619162/ Thanks, -- *Trinh Nguyen* *www.edlab.xyz * -------------- next part -------------- An HTML attachment was scrubbed... URL: From ahm.jawad118 at gmail.com Mon Dec 3 14:42:37 2018 From: ahm.jawad118 at gmail.com (Jawad Ahmed) Date: Mon, 3 Dec 2018 15:42:37 +0100 Subject: [Openstack-operators] Spice screen in horizon Message-ID: Hi all, How can I fit spice screen*(vm console| black screen)* to horizon console. Please see the attachment.Also below messages ,keyboard input is insecure etc.If someone can suggest workaround to remove those messages. I ll appreciate any kind of suggestions.Thank you. -- Greetings, Jawad -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Screen Shot 2018-12-03 at 15.37.17.png Type: image/png Size: 145854 bytes Desc: not available URL: -------------- next part -------------- _______________________________________________ OpenStack-operators mailing list OpenStack-operators at lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators From smooney at redhat.com Mon Dec 3 15:34:25 2018 From: smooney at redhat.com (Sean Mooney) Date: Mon, 03 Dec 2018 15:34:25 +0000 Subject: [nova][ops] Migrating instances with old extra specs info. In-Reply-To: References:

Message-ID: On Mon, 2018-12-03 at 10:07 -0500, Jay Pipes wrote: > On 12/03/2018 09:08 AM, Roman Dobosz wrote: > > Hi, > > > > We have an issue regarding live migrate old instances. > > > > On our infrastructure based on Newton, we had not well named our > > aggregation groups and we decided to completely change the naming > > conventions. We are using extra specs/metadata in flavors/aggregates and > > AggregateInstanceExtraSpecsFilter to select the set of hosts. > > > > After changing one of the key (lets call it 'kind') of extra > > spec/metadata to the new value, we are able to create new instances, but > > unable to live-migrate old one. This is because of stored flavor extra > > specs in instance_extra, which still holds the old value for the 'kind' > > key, and make the aggregate filter fail to match the hosts. > > > > In our opinion, it should be able to live-migrate such instance, since > > only the flavor metadata has changed, while other fields doesn't (vcpus, > > memory, disk). > > > > Is it a bug? Or maybe it is possible to change the instance flavor > > extra spec? > > Not sure it's a bug, per-se... might just be something you need to > manually change database records for, though. Sucks, since it's hacky, > but not sure if it's something we should change in the API contract. depending on what that extra spec was nova could not assume that changing it would not impact that vms runtime or how its scheduled. As an RFE however i might be worth considering if we could/show allow a resize to the same flavor so that we can update the embeded flavor to pickup extra specs changes. if we allowed such a resize and the live resize spec makes progess then perhaps that woudl be a clean resolution to this usecase? > > Best, > -jay > From gryf73 at gmail.com Mon Dec 3 16:32:40 2018 From: gryf73 at gmail.com (Roman Dobosz) Date: Mon, 3 Dec 2018 17:32:40 +0100 Subject: [nova][ops] Migrating instances with old extra specs info. In-Reply-To: References:

Message-ID: <20181203173240.8de68c03dfc8527fe2cefb56@gmail.com> On Mon, 3 Dec 2018 10:07:18 -0500 Jay Pipes wrote: > > Is it a bug? Or maybe it is possible to change the instance flavor > > extra spec? > > Not sure it's a bug, per-se... might just be something you need to At least unexpected behavior :) > manually change database records for, though. Sucks, since it's hacky, > but not sure if it's something we should change in the API contract. I'd be happy with nova-manage command for update extra specs in instance info, it doesn't need to be an API change :) -- Cheers, Roman Dobosz From gryf73 at gmail.com Mon Dec 3 16:35:27 2018 From: gryf73 at gmail.com (Roman Dobosz) Date: Mon, 3 Dec 2018 17:35:27 +0100 Subject: [nova][ops] Migrating instances with old extra specs info. In-Reply-To: References:

Message-ID: <20181203173527.6ad5aa3f6d749ad9f8008be2@gmail.com> On Mon, 03 Dec 2018 15:34:25 +0000 Sean Mooney wrote: > if we allowed such a resize and the live resize spec makes progess > then perhaps that woudl be a clean resolution to this usecase? Unlike changing values during resize, overriding certain keys in extra specs could be tricky, and slippery a bit. I'd opt for nova-manage command for manipulating existing instances data instead. -- Cheers, Roman Dobosz From mriedemos at gmail.com Mon Dec 3 16:38:01 2018 From: mriedemos at gmail.com (Matt Riedemann) Date: Mon, 3 Dec 2018 10:38:01 -0600 Subject: [nova] When can/should we remove old nova-status upgrade checks? Message-ID: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> Questions came up in review [1] about dropping an old "nova-status upgrade check" which relies on using the in-tree placement database models for testing the check. The check in question, "Resource Providers", compares the number of compute node resource providers in the nova_api DB against the number of compute nodes in all cells. When the check was originally written in Ocata [2] it was meant to help ease the upgrade where nova-compute needed to be configured to report compute node resource provider inventory to placement so the scheduler could use placement. It looks for things like >0 compute nodes but 0 resource providers indicating the computes aren't reporting into placement like they should be. In Ocata, if that happened, and there were older compute nodes (from Newton), then the scheduler would fallback to not use placement. That fallback code has been removed. Also in Ocata, nova-compute would fail to start if nova.conf wasn't configured for placement [3] but that has also been removed. Now if nova.conf isn't configured for placement, I think we'll just log an exception traceback but not actually fail the service startup, and the node's resources wouldn't be available to the scheduler, so you could get NoValidHost failures during scheduling and need to dig into why a given compute node isn't being used during scheduling. The question is, given this was added in Ocata to ease with the upgrade to require placement, and we're long past that now, is the check still useful? The check still has lots of newton/ocata/pike comments in it, so it's showing its age. However, one could argue it is still useful for base install verification, or for someone doing FFU. If we keep this check, the related tests will need to be re-written to use the placement REST API fixture since the in-tree nova_api db tables will eventually go away because of extracted placement. The bigger question is, what sort of criteria do we have for dropping old checks like this besides when the related code, for which the check was added, is removed? FFU kind of throws a wrench in everything, but at the same time, I believe the prescribed FFU steps are that online data migrations (and upgrade checks) are meant to be run per-release you're fast-forward upgrading through. [1] https://review.openstack.org/#/c/617941/26/nova/tests/unit/cmd/test_status.py [2] https://review.openstack.org/#/c/413250/ [3] https://github.com/openstack/nova/blob/stable/ocata/nova/compute/manager.py#L1139 -- Thanks, Matt From cboylan at sapwetik.org Mon Dec 3 16:38:07 2018 From: cboylan at sapwetik.org (Clark Boylan) Date: Mon, 03 Dec 2018 08:38:07 -0800 Subject: [Searchlight][Zuul] tox failed tests at zuul check only In-Reply-To: References: Message-ID: <1543855087.1459125.1597252016.5DBF506E@webmail.messagingengine.com> On Mon, Dec 3, 2018, at 7:28 AM, Trinh Nguyen wrote: > Hello, > > Currently, [1] fails tox py27 tests on Zuul check for just updating the log > text. The tests are successful at local dev env. Just wondering there is > any new change at Zuul CI? > > [1] https://review.openstack.org/#/c/619162/ > Reading the exceptions [2] and the test setup code [3] it appears that elasticsearch isn't responding on its http port and is thus treated as having not started. With the info we currently have it is hard to say why. Instead of redirecting exec logs to /dev/null [4] maybe we can capture that data? Also probably worth grabbing the elasticsearch daemon log as well. Without that information it is hard to say why this happened. I am not aware of any changes in the CI system that would cause this, but we do rebuild our test node images daily. [2] http://logs.openstack.org/62/619162/5/check/openstack-tox-py27/9ce318d/job-output.txt.gz#_2018-11-27_05_32_48_854289 [3] https://git.openstack.org/cgit/openstack/searchlight/tree/searchlight/tests/functional/__init__.py#n868 [4] https://git.openstack.org/cgit/openstack/searchlight/tree/searchlight/tests/functional/__init__.py#n851 Clark From dangtrinhnt at gmail.com Mon Dec 3 16:41:57 2018 From: dangtrinhnt at gmail.com (Trinh Nguyen) Date: Tue, 4 Dec 2018 01:41:57 +0900 Subject: [Searchlight][Zuul] tox failed tests at zuul check only In-Reply-To: <1543855087.1459125.1597252016.5DBF506E@webmail.messagingengine.com> References: <1543855087.1459125.1597252016.5DBF506E@webmail.messagingengine.com> Message-ID: Hi Clark, Thanks for the update. I will try doing what you suggested. Bests, On Tue, Dec 4, 2018 at 1:39 AM Clark Boylan wrote: > On Mon, Dec 3, 2018, at 7:28 AM, Trinh Nguyen wrote: > > Hello, > > > > Currently, [1] fails tox py27 tests on Zuul check for just updating the > log > > text. The tests are successful at local dev env. Just wondering there is > > any new change at Zuul CI? > > > > [1] https://review.openstack.org/#/c/619162/ > > > > Reading the exceptions [2] and the test setup code [3] it appears that > elasticsearch isn't responding on its http port and is thus treated as > having not started. With the info we currently have it is hard to say why. > Instead of redirecting exec logs to /dev/null [4] maybe we can capture that > data? Also probably worth grabbing the elasticsearch daemon log as well. > > Without that information it is hard to say why this happened. I am not > aware of any changes in the CI system that would cause this, but we do > rebuild our test node images daily. > > [2] > http://logs.openstack.org/62/619162/5/check/openstack-tox-py27/9ce318d/job-output.txt.gz#_2018-11-27_05_32_48_854289 > [3] > https://git.openstack.org/cgit/openstack/searchlight/tree/searchlight/tests/functional/__init__.py#n868 > [4] > https://git.openstack.org/cgit/openstack/searchlight/tree/searchlight/tests/functional/__init__.py#n851 > > Clark > > -- *Trinh Nguyen* *www.edlab.xyz * -------------- next part -------------- An HTML attachment was scrubbed... URL: From jaypipes at gmail.com Mon Dec 3 16:48:34 2018 From: jaypipes at gmail.com (Jay Pipes) Date: Mon, 3 Dec 2018 11:48:34 -0500 Subject: [nova] When can/should we remove old nova-status upgrade checks? In-Reply-To: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> References: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> Message-ID: <57d607fb-ae4a-0bb7-ad4f-a70f8217735e@gmail.com> On 12/03/2018 11:38 AM, Matt Riedemann wrote: > Questions came up in review [1] about dropping an old "nova-status > upgrade check" which relies on using the in-tree placement database > models for testing the check. The check in question, "Resource > Providers", compares the number of compute node resource providers in > the nova_api DB against the number of compute nodes in all cells. When > the check was originally written in Ocata [2] it was meant to help ease > the upgrade where nova-compute needed to be configured to report compute > node resource provider inventory to placement so the scheduler could use > placement. It looks for things like >0 compute nodes but 0 resource > providers indicating the computes aren't reporting into placement like > they should be. In Ocata, if that happened, and there were older compute > nodes (from Newton), then the scheduler would fallback to not use > placement. That fallback code has been removed. Also in Ocata, > nova-compute would fail to start if nova.conf wasn't configured for > placement [3] but that has also been removed. Now if nova.conf isn't > configured for placement, I think we'll just log an exception traceback > but not actually fail the service startup, and the node's resources > wouldn't be available to the scheduler, so you could get NoValidHost > failures during scheduling and need to dig into why a given compute node > isn't being used during scheduling. > > The question is, given this was added in Ocata to ease with the upgrade > to require placement, and we're long past that now, is the check still > useful? The check still has lots of newton/ocata/pike comments in it, so > it's showing its age. However, one could argue it is still useful for > base install verification, or for someone doing FFU. If we keep this > check, the related tests will need to be re-written to use the placement > REST API fixture since the in-tree nova_api db tables will eventually go > away because of extracted placement. > > The bigger question is, what sort of criteria do we have for dropping > old checks like this besides when the related code, for which the check > was added, is removed? I'm not sure there is any "standard" criteria other than evaluating each migration in the way you've done above and then removing the code that is past its useful life (due to the code touching now-irrelevant parts of code as you describe above for the placement-related checks). Best, -jay From jaypipes at gmail.com Mon Dec 3 16:56:17 2018 From: jaypipes at gmail.com (Jay Pipes) Date: Mon, 3 Dec 2018 11:56:17 -0500 Subject: [nova][ops] Migrating instances with old extra specs info. In-Reply-To: <20181203173240.8de68c03dfc8527fe2cefb56@gmail.com> References:

<20181203173240.8de68c03dfc8527fe2cefb56@gmail.com> Message-ID: On 12/03/2018 11:32 AM, Roman Dobosz wrote: > On Mon, 3 Dec 2018 10:07:18 -0500 > Jay Pipes wrote: > >>> Is it a bug? Or maybe it is possible to change the instance flavor >>> extra spec? >> >> Not sure it's a bug, per-se... might just be something you need to > > At least unexpected behavior :) It's not unexpected behaviour at all. The behaviour of Nova when changing a flavor's details has been (for many releases) that the flavor's details are changed but flavor data for already-launched instances does not change. Just like you can delete a flavor but it doesn't affect already-launched instances because we store the details of the original instance. The root of the problem you are experiencing is that flavor extra-specs is a pile of half-standardized random key-value information instead of structured, standardized quantitative and qualitative information (*gasp* that's what resource classes and traits are in placement...) Which is why I say this isn't actually unexpected behaviour or really a bug. >> manually change database records for, though. Sucks, since it's hacky, >> but not sure if it's something we should change in the API contract. > > I'd be happy with nova-manage command for update extra specs in > instance info, it doesn't need to be an API change :) mysql -u$USER -p$PASSWORD -Dnova -e"UPDATE instance_extra SET flavor = REPLACE(flavor, 'old string', 'new string')" There, no need for a nova-manage command. Best, -jay p.s. test the above on a copy of your production DB before you trust it... :) From openstack at fried.cc Mon Dec 3 16:59:46 2018 From: openstack at fried.cc (Eric Fried) Date: Mon, 3 Dec 2018 10:59:46 -0600 Subject: [nova] When can/should we remove old nova-status upgrade checks? In-Reply-To: <57d607fb-ae4a-0bb7-ad4f-a70f8217735e@gmail.com> References: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> <57d607fb-ae4a-0bb7-ad4f-a70f8217735e@gmail.com> Message-ID: <9d50c6bd-7e9f-6ef9-7b4b-826c770b2c91@fried.cc> On 12/3/18 10:48, Jay Pipes wrote: > On 12/03/2018 11:38 AM, Matt Riedemann wrote: >> Questions came up in review [1] about dropping an old "nova-status >> upgrade check" which relies on using the in-tree placement database >> models for testing the check. The check in question, "Resource >> Providers", compares the number of compute node resource providers in >> the nova_api DB against the number of compute nodes in all cells. When >> the check was originally written in Ocata [2] it was meant to help >> ease the upgrade where nova-compute needed to be configured to report >> compute node resource provider inventory to placement so the scheduler >> could use placement. It looks for things like >0 compute nodes but 0 >> resource providers indicating the computes aren't reporting into >> placement like they should be. In Ocata, if that happened, and there >> were older compute nodes (from Newton), then the scheduler would >> fallback to not use placement. That fallback code has been removed. >> Also in Ocata, nova-compute would fail to start if nova.conf wasn't >> configured for placement [3] but that has also been removed. Now if >> nova.conf isn't configured for placement, I think we'll just log an >> exception traceback but not actually fail the service startup, and the >> node's resources wouldn't be available to the scheduler, so you could >> get NoValidHost failures during scheduling and need to dig into why a >> given compute node isn't being used during scheduling. I say remove the check. Its usefulness is negligible compared to the effort that would be required to maintain it. It certainly isn't worth writing a whole new placement feature to replace the db access. And using existing interfaces would be very heavy in large deployments. (Not that that's a show-stopper for running an upgrade check, but still.) -efried >> The question is, given this was added in Ocata to ease with the >> upgrade to require placement, and we're long past that now, is the >> check still useful? The check still has lots of newton/ocata/pike >> comments in it, so it's showing its age. However, one could argue it >> is still useful for base install verification, or for someone doing >> FFU. If we keep this check, the related tests will need to be >> re-written to use the placement REST API fixture since the in-tree >> nova_api db tables will eventually go away because of extracted >> placement. >> >> The bigger question is, what sort of criteria do we have for dropping >> old checks like this besides when the related code, for which the >> check was added, is removed? > > I'm not sure there is any "standard" criteria other than evaluating each > migration in the way you've done above and then removing the code that > is past its useful life (due to the code touching now-irrelevant parts > of code as you describe above for the placement-related checks). > > Best, > -jay > > From fungi at yuggoth.org Mon Dec 3 17:03:40 2018 From: fungi at yuggoth.org (Jeremy Stanley) Date: Mon, 3 Dec 2018 17:03:40 +0000 Subject: [Searchlight][infra] tox failed tests at zuul check only In-Reply-To: References: Message-ID: <20181203170339.psadnws63wfywtrs@yuggoth.org> On 2018-12-04 00:28:30 +0900 (+0900), Trinh Nguyen wrote: > Currently, [1] fails tox py27 tests on Zuul check for just updating the log > text. The tests are successful at local dev env. Just wondering there is > any new change at Zuul CI? > > [1] https://review.openstack.org/#/c/619162/ I don't know of any recent changes which would result in the indicated test failures. According to the log it looks like it's a functional testsuite and the tests are failing to connect to the search API. I don't see your job collecting any service logs however, so it's unclear whether the API service is failing to start, or spontaneously crashes, or something else is going on. My first guess would be that one of your dependencies has released and brought some sort of regression. According to http://zuul.openstack.org/builds?job_name=openstack-tox-py27&project=openstack%2Fsearchlight&branch=master the last time that job passed for your repo was 2018-11-07 with the installed package versions listed in the http://logs.openstack.org/56/616056/1/gate/openstack-tox-py27/e413441/tox/py27-5.log file, and the first failure I see matching the errors in yours ran with the versions in http://logs.openstack.org/62/619162/1/check/openstack-tox-py27/809a281/tox/py27-5.log on 2018-11-21 (it wasn't run for the intervening 2 weeks so we have a fairly large window of potential external breakage there). A diff of those suggests the following dependencies updated between them: coverage: 4.5.1 -> 4.5.2 cryptography: 2.3.1 -> 2.4.1 httplib2: 0.11.3 -> 0.12.0 oslo.cache: 1.31.1 -> 1.31.0 (downgraded) oslo.service: 1.32.0 -> 1.33.0 python-neutronclient: 6.10.0 -> 6.11.0 requests: 2.20.0 -> 2.20.1 WebOb: 1.8.3 -> 1.8.4 Make sure with your local attempts at reproduction you're running with these newer versions of dependencies, for example by clearing any existing tox envs with the -r flag or `git clean -dfx` so that stale versions aren't used instead. -- Jeremy Stanley -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 963 bytes Desc: not available URL: From eibm at fried.cc Mon Dec 3 16:58:10 2018 From: eibm at fried.cc (Eric Fried) Date: Mon, 3 Dec 2018 10:58:10 -0600 Subject: [nova] When can/should we remove old nova-status upgrade checks? In-Reply-To: <57d607fb-ae4a-0bb7-ad4f-a70f8217735e@gmail.com> References: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> <57d607fb-ae4a-0bb7-ad4f-a70f8217735e@gmail.com> Message-ID: <856e56e5-a66c-6c52-0900-01818a825f87@fried.cc> On 12/3/18 10:48, Jay Pipes wrote: > On 12/03/2018 11:38 AM, Matt Riedemann wrote: >> Questions came up in review [1] about dropping an old "nova-status >> upgrade check" which relies on using the in-tree placement database >> models for testing the check. The check in question, "Resource >> Providers", compares the number of compute node resource providers in >> the nova_api DB against the number of compute nodes in all cells. When >> the check was originally written in Ocata [2] it was meant to help >> ease the upgrade where nova-compute needed to be configured to report >> compute node resource provider inventory to placement so the scheduler >> could use placement. It looks for things like >0 compute nodes but 0 >> resource providers indicating the computes aren't reporting into >> placement like they should be. In Ocata, if that happened, and there >> were older compute nodes (from Newton), then the scheduler would >> fallback to not use placement. That fallback code has been removed. >> Also in Ocata, nova-compute would fail to start if nova.conf wasn't >> configured for placement [3] but that has also been removed. Now if >> nova.conf isn't configured for placement, I think we'll just log an >> exception traceback but not actually fail the service startup, and the >> node's resources wouldn't be available to the scheduler, so you could >> get NoValidHost failures during scheduling and need to dig into why a >> given compute node isn't being used during scheduling. I say remove the check. Its usefulness is negligible compared to the effort that would be required to maintain it. It certainly isn't worth writing a whole new placement feature to replace the db access. And using existing interfaces would be very heavy in large deployments. (Not that that's a show-stopper for running an upgrade check, but still.) -efried >> The question is, given this was added in Ocata to ease with the >> upgrade to require placement, and we're long past that now, is the >> check still useful? The check still has lots of newton/ocata/pike >> comments in it, so it's showing its age. However, one could argue it >> is still useful for base install verification, or for someone doing >> FFU. If we keep this check, the related tests will need to be >> re-written to use the placement REST API fixture since the in-tree >> nova_api db tables will eventually go away because of extracted >> placement. >> >> The bigger question is, what sort of criteria do we have for dropping >> old checks like this besides when the related code, for which the >> check was added, is removed? > > I'm not sure there is any "standard" criteria other than evaluating each > migration in the way you've done above and then removing the code that > is past its useful life (due to the code touching now-irrelevant parts > of code as you describe above for the placement-related checks). > > Best, > -jay > > From mrhillsman at gmail.com Mon Dec 3 17:22:26 2018 From: mrhillsman at gmail.com (Melvin Hillsman) Date: Mon, 3 Dec 2018 11:22:26 -0600 Subject: [all][uc] OpenStack UC Meeting @ 1900 UTC Message-ID: Hi everyone, Just a reminder that the UC meeting will be in #openstack-uc in a little more than an hour and a half from now. Please feel empowered to add to the agenda here - https://etherpad.openstack.org/p/uc - and we hope to see you there! -- Kind regards, Melvin Hillsman mrhillsman at gmail.com mobile: (832) 264-2646 -------------- next part -------------- An HTML attachment was scrubbed... URL: From mrhillsman at gmail.com Mon Dec 3 17:40:25 2018 From: mrhillsman at gmail.com (Melvin Hillsman) Date: Mon, 3 Dec 2018 11:40:25 -0600 Subject: Fwd: [Action Needed] Update your Zoom clients In-Reply-To: References: Message-ID: Hi everyone, It was mentioned to me last week an issue with Zoom by some community members who know I use it and I keep my client updated but maybe you do not. Got another email this morning so, that being said, if you did not already know: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15715 Upgrade your client: https://support.zoom.us/hc/en-us/articles/201362233-Where-Do-I-Download-The-Latest-Version- -- Kind regards, Melvin Hillsman mrhillsman at gmail.com mobile: (832) 264-2646 -------------- next part -------------- An HTML attachment was scrubbed... URL: From rico.lin.guanyu at gmail.com Mon Dec 3 17:42:46 2018 From: rico.lin.guanyu at gmail.com (Rico Lin) Date: Tue, 4 Dec 2018 01:42:46 +0800 Subject: [all]Forum summary: Expose SIGs and WGs Message-ID: Dear all Here is the summary for forum `Expose SIGs and WGs` (etherpad [1] ). This concept still under development, so this is an open discussion and we need more feedbacks. Here are some general agreements on actions or ideas that we think it's worth to find the answer. *Set up guidelines for SIGs/WGs/Teams for interaction specific to this around tracking cross-project work* We tend to agree that we kind of lack for a guideline or a sample for SIGs/WGs, since all SIGs/WGs formed for different interest, we won't try to unify tools (unless that's what everyone agrees on) or rules for all groups. What we can do is to give more help to groups and provide a clear way for how they can set up cross-project works if they want to. Also, we can provide information on how to reach to users, ops, and developers and bridge them up. And we can even do a more general guideline or sample on how other SIGs/WGs are doing with their own workflow. Like self-healing SIG working on getting user story and feedback and use them to general better document/guideline for other users. Also, public cloud WG working on collect issues from public cloud providers and bring those issues to projects. Those IMO are great examples that we should put them down somewhere for cross SIGs/WGs consideration. As a further idea, we can even discuss if it's a common interest to have a SIG to help on SIGs. *A workflow for tracking:* This kind of follow above item. If we're going to set up a workflow, what we can add in to help people live an easier life? This is also an idea that no one in the room thinks it's a bad one, so it means in long term, it might worth our time to provide more clear information on what exactly workflow that we suggest everyone use. *Discuss SIG spec repo*: The discussion here is how can we monitoring SIGs/WGs health and track tasks. When talking about tasks we not just talking about bugs, but also features that's been considered as essential tasks for SIGs/WGs. We need a place to put them down in a trackable way (from a user story to a patch for implementation). *Ask foundation about have project update for SIGs/WGs*: One action we can start right now is to let SIGs/WGs present a project update (or even like a session but give each group 5 mins to present). This should help group getting more attention. And even capable to send out messages like what's the most important features or bug fixes they need from project teams, or what's the most important tasks that are under planning or working on. Fortunately, we got Melvin Hillsman (UC) volunteer on this task. We also have some real story (Luzi's story) for people to get a better understanding of why current workflow can look like for someone who tries to help. The thing that we also wish to do is to clear the message here. We think most of the tools are already there, so we shouldn't need to ask project teams to do any huge change. But still, we found there are definitely some improvements that we can do to better bridge users, ops, and developers. You might find some information here didn't give you a clear answer. And that's because of we still under open discussion for this. And I assume we gonna keep finding actions from discussions that we can do right away. We will try to avoid that we have to do the exact same session with the same argument over and over again. So please give your feedback, any idea, or give us your help if you also care about this. [1] https://etherpad.openstack.org/p/expose-sigs-and-wgs -- May The Force of OpenStack Be With You, *Rico Lin*irc: ricolin -------------- next part -------------- An HTML attachment was scrubbed... URL: From sean.mcginnis at gmx.com Mon Dec 3 17:54:41 2018 From: sean.mcginnis at gmx.com (Sean McGinnis) Date: Mon, 3 Dec 2018 11:54:41 -0600 Subject: [ptl][release] Proposed changes for cycle-with-intermediary services releases Message-ID: <20181203175441.GA19885@sm-workstation> This is a continuation of the effort the release team had started after the Denver PTG with simplifying and better aligning the release models in use. We noticed a handful of projects that had, intentionally or unintentionally, only made one release during the Rocky cycle. This result wasn't quite was intended, so we had discussed how we might encourage things so consumers of the community output get what they are expecting during the cycle. The intermediary model should be used to be able to deliver multiple releases at any point throughout the cycle. It should not be used as a way to avoid doing any releases until the very end of the cycle. To encourage (force?) this, we would require at least two releases of a non-library cycle-with-intermediary project during the cycle. If a release is not done by milestone 2, these projects would be switched to the new cycle-with-rc. This may actually be preferable for some with the reduced administrative overhead that should provide. Of course, teams are encouraged to decide and follow their preferred release model for whatever makes the most sense for their project. If you are the PTL or release liaison for one of these projects, please take some time to consider if the current cycle-with-intermediary release model is right for you, or if you should switch over to the newer cycle-with-rc model. The release team will review the current state of things after the second milestone at the beginning of January to try to help any projects that may benefit from choosing a different declared release model. Thanks! Sean McGinnis and the Release Team From jimmy at openstack.org Mon Dec 3 18:22:40 2018 From: jimmy at openstack.org (Jimmy McArthur) Date: Mon, 03 Dec 2018 12:22:40 -0600 Subject: OpenStack Summit Berlin Videos Now Available Message-ID: <5C057470.8050405@openstack.org> Thank you again for a wonderful Summit in Berlin. I'm pleased to announce the Summit Videos are now up on the openstack.org website: https://www.openstack.org/videos/summits/berlin-2018 If there was a session you missed, now is your chance to catch up! These videos will also be available in the Summit App as well as on the web under the Berlin Summit Schedule (https://www.openstack.org/summit/berlin-2018/summit-schedule/). If you have any questions or concerns about the videos, please write speakersupport at openstack.org. Cheers, Jimmy From doug at doughellmann.com Mon Dec 3 18:34:20 2018 From: doug at doughellmann.com (Doug Hellmann) Date: Mon, 03 Dec 2018 13:34:20 -0500 Subject: [tc] agenda for Technical Committee Meeting 6 Dec 2018 @ 1400 UTC Message-ID: TC Members, Our next meeting will be this Thursday, 6 Dec at 1400 UTC in #openstack-tc. This email contains the agenda for the meeting, based on the content of the wiki [0]. If you will not be able to attend, please include your name in the "Apologies for Absence" section of the wiki page [0]. [0] https://wiki.openstack.org/wiki/Meetings/TechnicalCommittee * Follow up on past action items ** dhellmann complete liaison assignments using the random generator I have updated the team liaisons in the wiki [1]. Please review the list of projects to which you are assigned. [1] https://wiki.openstack.org/wiki/OpenStack_health_tracker#Project_Teams ** tc-members review the chair duties document The draft document from [2] has been merged and is now available in the governance repo as CHAIR.rst [3]. Please come prepared to discuss any remaining questions about the list of chair duties. [2] https://etherpad.openstack.org/p/tc-chair-responsibilities [3] http://git.openstack.org/cgit/openstack/governance/tree/CHAIR.rst * active initiatives ** keeping up with python 3 releases We are ready to approve Zane's resolution for a process for tracking python 3 versions [4]. There is one wording update [5] that we should prepare for approval as well. The next step will be to approve Sean's patch describing the runtimes supported for Stein [6]. Please come prepared to discuss any issues with those patches so we can resolve them and move forward. [4] https://review.openstack.org/613145 [5] https://review.openstack.org/#/c/621461/1 [6] https://review.openstack.org/#/c/611080/ * follow-up from Berlin Forum ** Vision for OpenStack clouds Zane has summarized the forum session on the mailing list [7], including listing several potential updates to the vision based on our discussion there. Please come prepared to discuss next steps for making those changes. [7] http://lists.openstack.org/pipermail/openstack-discuss/2018-December/000431.html ** Train cycle goals I posted my summary of the forum session [8]. Each of the candidate goals have work to be done before they could be selected, so we will need to work with the sponsors and champions to see where enough progress is made to let us choose from among the proposals. Lance has agreed to lead the selection process for the Train goals, and will be looking for someone to pair up with on that. [8] http://lists.openstack.org/pipermail/openstack-discuss/2018-November/000055.html ** Other TC outcomes from Forum We had several other forum sessions, and should make sure we have a good list of any promised actions that came from those discussions. Please come prepared to discuss any sessions you moderated -- having summaries on the mailing list before the meeting would be very helpful. -- Doug From mdulko at redhat.com Mon Dec 3 18:49:53 2018 From: mdulko at redhat.com (=?UTF-8?Q?Micha=C5=82?= Dulko) Date: Mon, 03 Dec 2018 19:49:53 +0100 Subject: [openstack-dev] [kuryr] can we start kuryr libnetwork in container inside the nova VM. In-Reply-To: References: <7b585278013291fda1d55b5d74965b26d317e637.camel@redhat.com> Message-ID: <67b4d15b3c5b08d364610112e0b2c709f86febbf.camel@redhat.com> On Sun, 2018-12-02 at 09:33 +0530, Vikrant Aggarwal wrote: > Thanks Michal. Yes, my scenario is same which you mentioned. But I > don't want to use COE atm. So. the OVS and neutron-agent running > inside the VM will be communicating with compute node neutron agent? I've did some more research and seems like nested deployments actually got implemented in kuryr-libnetwork around 3 years ago. I don't know if that still works though. Also there seem to be no documentation, so unfortunately you'll need to figure it out by reading the code. See blueprint [1] for a list of related patches. Remember that this requires the cloud to support subports and trunk ports in Neutron. VMs get the trunk ports attached and the containers get the subports. This doesn't require neutron-agent running on the VMs. [1] https://blueprints.launchpad.net/kuryr/+spec/containers-in-instances > Thanks & Regards, > Vikrant Aggarwal > > > On Fri, Nov 30, 2018 at 9:31 PM Michał Dulko wrote: > > On Fri, 2018-11-30 at 09:38 +0530, Vikrant Aggarwal wrote: > > > Hello Team, > > > > > > I have seen the steps of starting the kuryr libnetwork container on > > > compute node. But If I need to run the same container inside the VM > > > running on compute node, is't possible to do that? > > > > > > I am not sure how can I map the /var/run/openvswitch inside the > > > nested VM because this is present on compute node. > > > > I think that if you want to run Neutron-networked Docker containers on > > an OpenStack VM, you'll need OpenvSwitch and neutron-agent installed on > > that VM as well. > > > > A better-suited approach would be to run K8s on OpenStack and use > > kuryr-kubernetes instead. That way Neutron subports are used to network > > pods. We have such a K8s-on-VM use case described in the docs [1]. > > > > [1] https://docs.openstack.org/kuryr-kubernetes/latest/installation/devstack/nested-vlan.html > > > > > https://docs.openstack.org/kuryr-libnetwork/latest/readme.html > > > > > > Thanks & Regards, > > > Vikrant Aggarwal > > From jude at judecross.com Mon Dec 3 19:15:46 2018 From: jude at judecross.com (Jude Cross) Date: Mon, 3 Dec 2018 11:15:46 -0800 Subject: [senlin] New meeting time for odd weeks Message-ID: +1 -------------------------------------------------------------------------------------------------------------------- As discussed in our last Senlin meeting [1], I would like to propose holding the weekly meeting during odd weeks at a time that is more convenient for US and Europe. The proposal is to have the meeting at 19:00 UTC (11am PST) for odd weeks, while the meeting time for even weeks stays at the current time of 5:30 UTC. If accepted, the meeting times for upcoming weeks would be as follows: - Thursday, December 6, 2018 at 19:00:00 UTC - Friday, December 14, 2018 at 05:30:00 UTC - Thursday, December 20, 2018 at 19:00:00 UTC ... Please reply with any feedback. Regards, Duc (dtruong) [1] http://eavesdrop.openstack.org/meetings/senlin/2018/senlin.2018-11-30-05.30.log.html#l-44 -------------- next part -------------- An HTML attachment was scrubbed... URL: From Arkady.Kanevsky at dell.com Mon Dec 3 19:40:01 2018 From: Arkady.Kanevsky at dell.com (Arkady.Kanevsky at dell.com) Date: Mon, 3 Dec 2018 19:40:01 +0000 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: <5C057470.8050405@openstack.org> References: <5C057470.8050405@openstack.org> Message-ID: <1d4f5bec8f9143ba880d78df8566a757@AUSX13MPS308.AMER.DELL.COM> Thank you very much Jimmy for making it happen. -----Original Message----- From: Jimmy McArthur [mailto:jimmy at openstack.org] Sent: Monday, December 3, 2018 12:23 PM To: openstack-discuss at lists.openstack.org; community at lists.openstack.org Subject: OpenStack Summit Berlin Videos Now Available [EXTERNAL EMAIL] Thank you again for a wonderful Summit in Berlin. I'm pleased to announce the Summit Videos are now up on the openstack.org website: https://www.openstack.org/videos/summits/berlin-2018 If there was a session you missed, now is your chance to catch up! These videos will also be available in the Summit App as well as on the web under the Berlin Summit Schedule (https://www.openstack.org/summit/berlin-2018/summit-schedule/). If you have any questions or concerns about the videos, please write speakersupport at openstack.org. Cheers, Jimmy From openstack at nemebean.com Mon Dec 3 19:40:04 2018 From: openstack at nemebean.com (Ben Nemec) Date: Mon, 3 Dec 2018 13:40:04 -0600 Subject: [oslo] Berlin Summit Recap Message-ID: A bit late because I was on PTO the week after and it turns out I had a lot more to say than I realized. :-) There wasn't a ton of Oslo stuff going on, but there were a few interesting things that I discuss in [1]. I also ended up writing my thoughts about some non-Oslo-specific sessions I attended, including one that I split off in its own post because it got a bit long and deserved standalone attention[2]. 1: http://blog.nemebean.com/content/berlin-summit-recap 2: http://blog.nemebean.com/content/upstream-openstack-performance-and-release-shaming -Ben From doug at doughellmann.com Mon Dec 3 20:00:22 2018 From: doug at doughellmann.com (Doug Hellmann) Date: Mon, 03 Dec 2018 15:00:22 -0500 Subject: [ops][docs] The Contributor Guide: Ops Feedback Session Summary In-Reply-To: References: <5938a4e0-3eb1-5448-3af5-f56bf3452e9c@suse.com> Message-ID: Doug Hellmann writes: > Andreas Jaeger writes: > >> On 11/27/18 4:38 PM, Kendall Nelson wrote: >>> Hello! >>> >>> >>> For the long version, feel free to look over the etherpad[1]. >>> >>> >>> It should be noted that this session was in relation to the operator >>> section of the contributor guide, not the operations guide, though they >>> should be closely related and link to one another. >>> >>> >>> Basically the changes requested can be boiled down to two types of >>> changes: cosmetic and missing content. >>> >>> >>> Cosmetic Changes: >>> >>> * >>> >>> Timestamps so people can know when the last change was made to a >>> given doc (dhellmann volunteered to help here)[2] >>> >>> * >>> >>> Floating bug report button and some mechanism for auto populating >>> which page a bug is on so that the reader doesn’t have to know what >>> rst file in what repo has the issue to file a bug[3] >> >> This is something probably for openstackdocstheme to have it >> everywhere. > > Yes, that was the idea. We already have some code that pulls the > timestamp from git in the governance repo, so I was going to move that > over to the theme for better reuse. > > -- > Doug > The patch to add this to the theme is in https://review.openstack.org/#/c/621690/ -- Doug From mrhillsman at gmail.com Mon Dec 3 20:18:11 2018 From: mrhillsman at gmail.com (Melvin Hillsman) Date: Mon, 3 Dec 2018 14:18:11 -0600 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: <5C057470.8050405@openstack.org> References: <5C057470.8050405@openstack.org> Message-ID: Thanks for the update Jimmy! On Mon, Dec 3, 2018 at 12:23 PM Jimmy McArthur wrote: > Thank you again for a wonderful Summit in Berlin. I'm pleased to > announce the Summit Videos are now up on the openstack.org website: > https://www.openstack.org/videos/summits/berlin-2018 If there was a > session you missed, now is your chance to catch up! These videos will > also be available in the Summit App as well as on the web under the > Berlin Summit Schedule > (https://www.openstack.org/summit/berlin-2018/summit-schedule/). > > If you have any questions or concerns about the videos, please write > speakersupport at openstack.org. > > Cheers, > Jimmy > > -- Kind regards, Melvin Hillsman mrhillsman at gmail.com mobile: (832) 264-2646 -------------- next part -------------- An HTML attachment was scrubbed... URL: From mriedemos at gmail.com Mon Dec 3 20:32:15 2018 From: mriedemos at gmail.com (Matt Riedemann) Date: Mon, 3 Dec 2018 14:32:15 -0600 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: <5C057470.8050405@openstack.org> References: <5C057470.8050405@openstack.org> Message-ID: <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> On 12/3/2018 12:22 PM, Jimmy McArthur wrote: > > If you have any questions or concerns about the videos, please write > speakersupport at openstack.org. So uh, I don't really want to be that guy, but I'm sure others have noticed the deal with the slides being different in the recordings from years past, in that you can't view them (hopefully people are uploading their slides). I'm mostly curious if there was a reason for that? Budget cuts? Technical issues? -- Thanks, Matt From mike.carden at gmail.com Mon Dec 3 20:43:04 2018 From: mike.carden at gmail.com (Mike Carden) Date: Tue, 4 Dec 2018 07:43:04 +1100 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: > > > Presuming you are deploying Rocky or Queens, > Yep, it's Queens. > > It goes in the nova.conf file under the [placement] section: > > randomize_allocation_candidates = true > In triple-o land it seems like the config may need to be somewhere like nova-scheduler.yaml and laid down via a re-deploy. Or something. The nova_scheduler runs in a container on a 'controller' host. -- MC -------------- next part -------------- An HTML attachment was scrubbed... URL: From jimmy at openstack.org Mon Dec 3 20:46:31 2018 From: jimmy at openstack.org (Jimmy McArthur) Date: Mon, 03 Dec 2018 14:46:31 -0600 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> Message-ID: <5C059627.9040304@openstack.org> In Berlin, in rooms where we had a full view of the screen, we didn't do a second screen for slides only. As mentioned, presenters can upload their slides to help with that. For places like the Marketplace demo theater where we had a smaller screen format, we added the view of both presenter and slide: https://www.openstack.org/videos/berlin-2018/how-to-avoid-vendor-lock-in-in-a-multi-cloud-world-with-zenko We're looking at ways to improve both formats in Denver, so I'd say stand by. If there is a presentation that you feel is too difficult to follow, we can reach out to those presenters and encourage them again to upload their slides. > Matt Riedemann > December 3, 2018 at 2:32 PM > > > So uh, I don't really want to be that guy, but I'm sure others have > noticed the deal with the slides being different in the recordings > from years past, in that you can't view them (hopefully people are > uploading their slides). I'm mostly curious if there was a reason for > that? Budget cuts? Technical issues? > > Jimmy McArthur > December 3, 2018 at 12:22 PM > Thank you again for a wonderful Summit in Berlin. I'm pleased to > announce the Summit Videos are now up on the openstack.org website: > https://www.openstack.org/videos/summits/berlin-2018 If there was a > session you missed, now is your chance to catch up! These videos will > also be available in the Summit App as well as on the web under the > Berlin Summit Schedule > (https://www.openstack.org/summit/berlin-2018/summit-schedule/). > > If you have any questions or concerns about the videos, please write > speakersupport at openstack.org. > > Cheers, > Jimmy > > _______________________________________________ > Staff mailing list > Staff at lists.openstack.org > http://lists.openstack.org/cgi-bin/mailman/listinfo/staff -------------- next part -------------- An HTML attachment was scrubbed... URL: From gryf73 at gmail.com Mon Dec 3 20:58:23 2018 From: gryf73 at gmail.com (Roman Dobosz) Date: Mon, 3 Dec 2018 21:58:23 +0100 Subject: [nova][ops] Migrating instances with old extra specs info. In-Reply-To: References:

<20181203173240.8de68c03dfc8527fe2cefb56@gmail.com> Message-ID: <20181203215823.e41d1d0b0e33f878794a8beb@gmail.com> On Mon, 3 Dec 2018 11:56:17 -0500 Jay Pipes wrote: > >>> Is it a bug? Or maybe it is possible to change the instance flavor > >>> extra spec? > >> Not sure it's a bug, per-se... might just be something you need to > > At least unexpected behavior :) > It's not unexpected behaviour at all. The behaviour of Nova when > changing a flavor's details has been (for many releases) that the > flavor's details are changed but flavor data for already-launched > instances does not change. Just like you can delete a flavor but it > doesn't affect already-launched instances because we store the details > of the original instance. For resource related things - sure. As for more ephemeral things like metadata - its arguable. Although, I tend to agree, that sometimes metadata could potentially hold sensitive information, which shouldn't be changed in that case. > The root of the problem you are experiencing is that flavor extra-specs > is a pile of half-standardized random key-value information instead of > structured, standardized quantitative and qualitative information > (*gasp* that's what resource classes and traits are in placement...) Yeah, I know. But we have that issue in Newton, where traits are nonexistent yet :) > Which is why I say this isn't actually unexpected behaviour or really a bug. > > >> manually change database records for, though. Sucks, since it's hacky, > >> but not sure if it's something we should change in the API contract. > > I'd be happy with nova-manage command for update extra specs in > > instance info, it doesn't need to be an API change :) > mysql -u$USER -p$PASSWORD -Dnova -e"UPDATE instance_extra SET flavor = > REPLACE(flavor, 'old string', 'new string')" > > There, no need for a nova-manage command. Well, thank you, kind sir! > p.s. test the above on a copy of your production DB before you trust > it... :) You bet :) -- Cheers, Roman Dobosz From mriedemos at gmail.com Mon Dec 3 21:01:58 2018 From: mriedemos at gmail.com (Matt Riedemann) Date: Mon, 3 Dec 2018 15:01:58 -0600 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: <5C059627.9040304@openstack.org> References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> Message-ID: On 12/3/2018 2:46 PM, Jimmy McArthur wrote: > We're looking at ways to improve both formats in Denver, so I'd say > stand by. If there is a presentation that you feel is too difficult to > follow, we can reach out to those presenters and encourage them again to > upload their slides. Here is a good example of what I'm talking about: https://youtu.be/J9K-x0yVZ4U?t=425 There is full view of the slides, but my eyes can't read most of that text. Compare that to YVR: https://youtu.be/U5V_2CUj-6A?t=576 And it's night and day. -- Thanks, Matt From jimmy at openstack.org Mon Dec 3 21:05:26 2018 From: jimmy at openstack.org (Jimmy McArthur) Date: Mon, 03 Dec 2018 15:05:26 -0600 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> Message-ID: <5C059A96.8030504@openstack.org> Yeah, that makes sense. We had multiple complaints coming out of YVR that the size of the speaker was too small. So we're trying to work out a happy medium that can still work within our budget. Appreciate the feedback :) > Matt Riedemann > December 3, 2018 at 3:01 PM > > > Here is a good example of what I'm talking about: > > https://youtu.be/J9K-x0yVZ4U?t=425 > > There is full view of the slides, but my eyes can't read most of that > text. Compare that to YVR: > > https://youtu.be/U5V_2CUj-6A?t=576 > > And it's night and day. > > Jimmy McArthur > December 3, 2018 at 2:46 PM > In Berlin, in rooms where we had a full view of the screen, we didn't > do a second screen for slides only. As mentioned, presenters can > upload their slides to help with that. > > For places like the Marketplace demo theater where we had a smaller > screen format, we added the view of both presenter and slide: > https://www.openstack.org/videos/berlin-2018/how-to-avoid-vendor-lock-in-in-a-multi-cloud-world-with-zenko > > We're looking at ways to improve both formats in Denver, so I'd say > stand by. If there is a presentation that you feel is too difficult > to follow, we can reach out to those presenters and encourage them > again to upload their slides. > > > > Matt Riedemann > December 3, 2018 at 2:32 PM > > > So uh, I don't really want to be that guy, but I'm sure others have > noticed the deal with the slides being different in the recordings > from years past, in that you can't view them (hopefully people are > uploading their slides). I'm mostly curious if there was a reason for > that? Budget cuts? Technical issues? > > Jimmy McArthur > December 3, 2018 at 12:22 PM > Thank you again for a wonderful Summit in Berlin. I'm pleased to > announce the Summit Videos are now up on the openstack.org website: > https://www.openstack.org/videos/summits/berlin-2018 If there was a > session you missed, now is your chance to catch up! These videos will > also be available in the Summit App as well as on the web under the > Berlin Summit Schedule > (https://www.openstack.org/summit/berlin-2018/summit-schedule/). > > If you have any questions or concerns about the videos, please write > speakersupport at openstack.org. > > Cheers, > Jimmy > > _______________________________________________ > Staff mailing list > Staff at lists.openstack.org > http://lists.openstack.org/cgi-bin/mailman/listinfo/staff -------------- next part -------------- An HTML attachment was scrubbed... URL: From openstack at medberry.net Mon Dec 3 21:16:11 2018 From: openstack at medberry.net (David Medberry) Date: Mon, 3 Dec 2018 14:16:11 -0700 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: <5C059A96.8030504@openstack.org> References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> <5C059A96.8030504@openstack.org> Message-ID: Hmmm, if you can HEAR the speaker and SEE the slides (as in YVR), seems like that should be sufficient. There's usually a photo of the speaker on their bio page if you need more "presence". -dave On Mon, Dec 3, 2018 at 2:05 PM Jimmy McArthur wrote: > Yeah, that makes sense. We had multiple complaints coming out of YVR that > the size of the speaker was too small. So we're trying to work out a happy > medium that can still work within our budget. > > Appreciate the feedback :) > > Matt Riedemann > December 3, 2018 at 3:01 PM > > > Here is a good example of what I'm talking about: > > https://youtu.be/J9K-x0yVZ4U?t=425 > > There is full view of the slides, but my eyes can't read most of that > text. Compare that to YVR: > > https://youtu.be/U5V_2CUj-6A?t=576 > > And it's night and day. > > Jimmy McArthur > December 3, 2018 at 2:46 PM > In Berlin, in rooms where we had a full view of the screen, we didn't do a > second screen for slides only. As mentioned, presenters can upload their > slides to help with that. > > For places like the Marketplace demo theater where we had a smaller screen > format, we added the view of both presenter and slide: > https://www.openstack.org/videos/berlin-2018/how-to-avoid-vendor-lock-in-in-a-multi-cloud-world-with-zenko > > We're looking at ways to improve both formats in Denver, so I'd say stand > by. If there is a presentation that you feel is too difficult to follow, > we can reach out to those presenters and encourage them again to upload > their slides. > > > > Matt Riedemann > December 3, 2018 at 2:32 PM > > > So uh, I don't really want to be that guy, but I'm sure others have > noticed the deal with the slides being different in the recordings from > years past, in that you can't view them (hopefully people are uploading > their slides). I'm mostly curious if there was a reason for that? Budget > cuts? Technical issues? > > Jimmy McArthur > December 3, 2018 at 12:22 PM > Thank you again for a wonderful Summit in Berlin. I'm pleased to announce > the Summit Videos are now up on the openstack.org website: > https://www.openstack.org/videos/summits/berlin-2018 If there was a > session you missed, now is your chance to catch up! These videos will also > be available in the Summit App as well as on the web under the Berlin > Summit Schedule ( > https://www.openstack.org/summit/berlin-2018/summit-schedule/). > > If you have any questions or concerns about the videos, please write > speakersupport at openstack.org. > > Cheers, > Jimmy > > _______________________________________________ > Staff mailing list > Staff at lists.openstack.org > http://lists.openstack.org/cgi-bin/mailman/listinfo/staff > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From openstack at medberry.net Mon Dec 3 21:18:00 2018 From: openstack at medberry.net (David Medberry) Date: Mon, 3 Dec 2018 14:18:00 -0700 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> <5C059A96.8030504@openstack.org> Message-ID: and so sorry for the TOFU reply all. I'm beating myself up over it. From corvus at inaugust.com Mon Dec 3 21:30:32 2018 From: corvus at inaugust.com (James E. Blair) Date: Mon, 03 Dec 2018 13:30:32 -0800 Subject: [infra] A change to Zuul's queuing behavior Message-ID: <87bm62z4av.fsf@meyer.lemoncheese.net> Hi, We recently made a change to how Zuul and Nodepool prioritize node requests. Cloud resources are the major constraint in how long it takes Zuul to run test jobs on proposed changes. Because we're using more resources than ever before (but not necessarily because we're doing more work -- Clark has been helping to identify inefficiencies in other mailing list threads), the amount of time it takes to receive results on a change has been increasing. Since some larger projects consume the bulk of cloud resources in our system, this can be especially frustrating for smaller projects. To be sure, it impacts everyone, but while larger projects receive a continuous stream of results (even if delayed) smaller projects may wait hours before seeing results on a single change. In order to help all projects maintain a minimal velocity, we've begun dynamically prioritizing node requests based on the number of changes a project has in a given pipeline. This means that the first change for every project in the check pipeline has the same priority. The same is true for the second change of each project in the pipeline. The result is that if a project has 50 changes in check, and another project has a single change in check, the second project won't have to wait for all 50 changes ahead before it gets nodes allocated. As conditions change (requests are fulfilled, changes are added and removed) the priorities of any unfulfilled requests are adjusted accordingly. In the gate pipeline, the grouping is by shared change queue. But the gate pipeline still has a higher overall precedence than check. We hope that this will make for a significant improvement in the experience for smaller projects without causing undue hardship for larger ones. We will be closely observing the new behavior and make any necessary tuning adjustments over the next few weeks. Please let us know if you see any adverse impacts, but don't be surprised if you notice node requests being filled "out of order". -Jim From chris.friesen at windriver.com Mon Dec 3 21:33:08 2018 From: chris.friesen at windriver.com (Chris Friesen) Date: Mon, 3 Dec 2018 15:33:08 -0600 Subject: [infra] A change to Zuul's queuing behavior In-Reply-To: <87bm62z4av.fsf@meyer.lemoncheese.net> References: <87bm62z4av.fsf@meyer.lemoncheese.net> Message-ID: On 12/3/2018 3:30 PM, James E. Blair wrote: > In order to help all projects maintain a minimal velocity, we've begun > dynamically prioritizing node requests based on the number of changes a > project has in a given pipeline. This sounds great, thanks. Chris From miguel at mlavalle.com Mon Dec 3 21:38:21 2018 From: miguel at mlavalle.com (Miguel Lavalle) Date: Mon, 3 Dec 2018 15:38:21 -0600 Subject: [openstack-dev] [Neutron] Propose Nate Johnston for Neutron core Message-ID: Hi Stackers, I want to nominate Nate Johnston (irc:njohnston) as a member of the Neutron core team. Nate started contributing to Neutron back in the Liberty cycle. One of the highlight contributions of that early period is his collaboration with others to implement DSCP QoS rules ( https://review.openstack.org/#/c/251738/). After a hiatus of a few cycles, we were lucky to have Nate come back to the community during the Rocky cycle. Since then, he has been a driving force in the adoption in Neutron of Oslo Versioned Objects, the "Run under Python 3 by default" community wide initiative and the optimization of ports creation in bulk to better support containerized workloads. He is a man with a wide range of interests, who is not afraid of expressing his opinions in any of them. The quality and number of his code reviews during the Stein cycle is on par with the leading members of the core team: http://stackalytics.com/?module=neutron-group. I especially admire his ability to forcefully handle disagreement in a friendly and easy going manner. On top of all that, he graciously endured me as his mentor over the past few months. For all these reasons, I think he is ready to join the team and we will be very lucky to have him as a fully voting core. I will keep this nomination open for a week as customary. Thank you Miguel -------------- next part -------------- An HTML attachment was scrubbed... URL: From duc.openstack at gmail.com Mon Dec 3 21:53:45 2018 From: duc.openstack at gmail.com (Duc Truong) Date: Mon, 3 Dec 2018 13:53:45 -0800 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> <5C059A96.8030504@openstack.org> Message-ID: Quick question, how do we upload the slides for our presentation? From miguel at mlavalle.com Mon Dec 3 22:14:02 2018 From: miguel at mlavalle.com (Miguel Lavalle) Date: Mon, 3 Dec 2018 16:14:02 -0600 Subject: [openstack-dev] [Neutron] Propose Hongbin Lu for Neutron core Message-ID: Hi Stackers, I want to nominate Hongbin Lu (irc: hongbin) as a member of the Neutron core team. Hongbin started contributing to the OpenStack community in the Liberty cycle. Over time, he made great contributions in helping the community to better support containers by being core team member and / or PTL in projects such as Zun and Magnum. An then, fortune played in our favor and Hongbin joined the Neutron team in the Queens cycle. Since then, he has made great contributions such as filters validation in the ReST API, PF status propagation to to VFs (ports) in SR-IOV environments and leading the forking of RYU into the os-ken OpenStack project, which provides key foundational functionality for openflow. He is not a man who wastes words, but when he speaks up, his opinions are full of insight. This is reflected in the quality of his code reviews, which in number are on par with the leading members of the core team: http://stackalytics.com/?module=neutron-group. Even though Hongbin leaves in Toronto, he speaks Mandarin Chinese and was born and raised in China. This is a big asset in helping the Neutron team to incorporate use cases from that part of the world. Hongbin spent the past few months being mentored by Slawek Kaplonski, who has reported that Hongbin is ready for the challenge of being a core team member. I (and other core team members) concur. I will keep this nomination open for a week as customary. Thank you Miguel -------------- next part -------------- An HTML attachment was scrubbed... URL: From jimmy at openstack.org Mon Dec 3 22:16:29 2018 From: jimmy at openstack.org (Jimmy McArthur) Date: Mon, 03 Dec 2018 16:16:29 -0600 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> <5C059A96.8030504@openstack.org> Message-ID: <5C05AB3D.8080908@openstack.org> Hi Duc, Please send a link to your slide deck (or the deck itself) to speakersupport at openstack.org, and I'll be happy to get it up for you. Thank you, Jimmy > Duc Truong > December 3, 2018 at 3:53 PM > Quick question, how do we upload the slides for our presentation? > David Medberry > December 3, 2018 at 3:18 PM > and so sorry for the TOFU reply all. I'm beating myself up over it. > David Medberry > December 3, 2018 at 3:16 PM > Hmmm, if you can HEAR the speaker and SEE the slides (as in YVR), > seems like that should be sufficient. There's usually a photo of the > speaker on their bio page if you need more "presence". > > -dave > > Jimmy McArthur > December 3, 2018 at 3:05 PM > Yeah, that makes sense. We had multiple complaints coming out of YVR > that the size of the speaker was too small. So we're trying to work > out a happy medium that can still work within our budget. > > Appreciate the feedback :) > > > Matt Riedemann > December 3, 2018 at 3:01 PM > > > Here is a good example of what I'm talking about: > > https://youtu.be/J9K-x0yVZ4U?t=425 > > There is full view of the slides, but my eyes can't read most of that > text. Compare that to YVR: > > https://youtu.be/U5V_2CUj-6A?t=576 > > And it's night and day. > -------------- next part -------------- An HTML attachment was scrubbed... URL: From strigazi at gmail.com Mon Dec 3 22:24:48 2018 From: strigazi at gmail.com (Spyros Trigazis) Date: Mon, 3 Dec 2018 23:24:48 +0100 Subject: [openstack-dev] [magnum] kubernetes images for magnum rocky Message-ID: Hello all, Following the vulnerability [0], with magnum rocky and the kubernetes driver on fedora atomic you can use this tag "v1.11.5-1" [1] for new clusters. To upgrade the apiserver in existing clusters, on the master node(s) you can run: sudo atomic pull --storage ostree docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 sudo atomic containers update --rebase docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 kube-apiserver You can upgrade the other k8s components with similar commands. I'll share instructions for magnum queens tomorrow morning CET time. Cheers, Spyros [0] https://github.com/kubernetes/kubernetes/issues/71411 [1] https://hub.docker.com/r/openstackmagnum/kubernetes-apiserver/tags/ -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From strigazi at gmail.com Mon Dec 3 22:24:48 2018 From: strigazi at gmail.com (Spyros Trigazis) Date: Mon, 3 Dec 2018 23:24:48 +0100 Subject: [Openstack-operators] [openstack-dev][magnum] kubernetes images for magnum rocky Message-ID: Hello all, Following the vulnerability [0], with magnum rocky and the kubernetes driver on fedora atomic you can use this tag "v1.11.5-1" [1] for new clusters. To upgrade the apiserver in existing clusters, on the master node(s) you can run: sudo atomic pull --storage ostree docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 sudo atomic containers update --rebase docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 kube-apiserver You can upgrade the other k8s components with similar commands. I'll share instructions for magnum queens tomorrow morning CET time. Cheers, Spyros [0] https://github.com/kubernetes/kubernetes/issues/71411 [1] https://hub.docker.com/r/openstackmagnum/kubernetes-apiserver/tags/ -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- _______________________________________________ OpenStack-operators mailing list OpenStack-operators at lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators From skaplons at redhat.com Mon Dec 3 22:41:33 2018 From: skaplons at redhat.com (Slawomir Kaplonski) Date: Mon, 3 Dec 2018 23:41:33 +0100 Subject: [openstack-dev] [Neutron] Propose Hongbin Lu for Neutron core In-Reply-To: References: Message-ID: <493CB94D-19C3-4B61-8577-6BD98006B7F5@redhat.com> Definitely big +1 from me! — Slawek Kaplonski Senior software engineer Red Hat > Wiadomość napisana przez Miguel Lavalle w dniu 03.12.2018, o godz. 23:14: > > Hi Stackers, > > I want to nominate Hongbin Lu (irc: hongbin) as a member of the Neutron core team. Hongbin started contributing to the OpenStack community in the Liberty cycle. Over time, he made great contributions in helping the community to better support containers by being core team member and / or PTL in projects such as Zun and Magnum. An then, fortune played in our favor and Hongbin joined the Neutron team in the Queens cycle. Since then, he has made great contributions such as filters validation in the ReST API, PF status propagation to to VFs (ports) in SR-IOV environments and leading the forking of RYU into the os-ken OpenStack project, which provides key foundational functionality for openflow. He is not a man who wastes words, but when he speaks up, his opinions are full of insight. This is reflected in the quality of his code reviews, which in number are on par with the leading members of the core team: http://stackalytics.com/?module=neutron-group. Even though Hongbin leaves in Toronto, he speaks Mandarin Chinese and was born and raised in China. This is a big asset in helping the Neutron team to incorporate use cases from that part of the world. > > Hongbin spent the past few months being mentored by Slawek Kaplonski, who has reported that Hongbin is ready for the challenge of being a core team member. I (and other core team members) concur. > > I will keep this nomination open for a week as customary. > > Thank you > > Miguel From skaplons at redhat.com Mon Dec 3 22:43:24 2018 From: skaplons at redhat.com (Slawomir Kaplonski) Date: Mon, 3 Dec 2018 23:43:24 +0100 Subject: [openstack-dev] [Neutron] Propose Nate Johnston for Neutron core In-Reply-To: References: Message-ID: Big +1 from me for Nate also :) — Slawek Kaplonski Senior software engineer Red Hat > Wiadomość napisana przez Miguel Lavalle w dniu 03.12.2018, o godz. 22:38: > > Hi Stackers, > > I want to nominate Nate Johnston (irc:njohnston) as a member of the Neutron core team. Nate started contributing to Neutron back in the Liberty cycle. One of the highlight contributions of that early period is his collaboration with others to implement DSCP QoS rules (https://review.openstack.org/#/c/251738/). After a hiatus of a few cycles, we were lucky to have Nate come back to the community during the Rocky cycle. Since then, he has been a driving force in the adoption in Neutron of Oslo Versioned Objects, the "Run under Python 3 by default" community wide initiative and the optimization of ports creation in bulk to better support containerized workloads. He is a man with a wide range of interests, who is not afraid of expressing his opinions in any of them. The quality and number of his code reviews during the Stein cycle is on par with the leading members of the core team: http://stackalytics.com/?module=neutron-group. I especially admire his ability to forcefully handle disagreement in a friendly and easy going manner. > > On top of all that, he graciously endured me as his mentor over the past few months. For all these reasons, I think he is ready to join the team and we will be very lucky to have him as a fully voting core. > > I will keep this nomination open for a week as customary. > > Thank you > > Miguel > > From openstack at nemebean.com Mon Dec 3 22:48:28 2018 From: openstack at nemebean.com (Ben Nemec) Date: Mon, 3 Dec 2018 16:48:28 -0600 Subject: [all] Etcd as DLM Message-ID: <3147d433-13b4-3582-c831-25c29a5799ca@nemebean.com> Hi, I wanted to revisit this topic because it has come up in some downstream discussions around Cinder A/A HA and the last time we talked about it upstream was a year and a half ago[1]. There have certainly been changes since then so I think it's worth another look. For context, the conclusion of that session was: "Let's use etcd 3.x in the devstack CI, projects that are eventlet based an use the etcd v3 http experimental API and those that don't can use the etcd v3 gRPC API. Dims will submit a patch to tooz for the new driver with v3 http experimental API. Projects should feel free to use the DLM based on tooz+etcd3 from now on. Others projects can figure out other use cases for etcd3." The main question that has come up is whether this is still the best practice or if we should revisit the preferred drivers for etcd. Gorka has gotten the grpc-based driver working in a Cinder driver that needs etcd[2], so there's a question as to whether we still need the HTTP etcd-gateway or if everything should use grpc. I will admit I'm nervous about trying to juggle eventlet and grpc, but if it works then my only argument is general misgivings about doing anything clever that involves eventlet. :-) It looks like the HTTP API for etcd has moved out of experimental status[3] at this point, so that's no longer an issue. There was some vague concern from a downstream packaging perspective that the grpc library might use a funky build system, whereas the etcd3-gateway library only depends on existing OpenStack requirements. On the other hand, I don't know how much of a hassle it is to deploy and manage a grpc-gateway. I'm kind of hoping someone has already been down this road and can advise about what they found. Thanks. -Ben 1: https://etherpad.openstack.org/p/BOS-etcd-base-service 2: https://github.com/embercsi/ember-csi/blob/5bd4dffe9107bc906d14a45cd819d9a659c19047/ember_csi/ember_csi.py#L1106-L1111 3: https://github.com/grpc-ecosystem/grpc-gateway From mrhillsman at gmail.com Mon Dec 3 23:13:42 2018 From: mrhillsman at gmail.com (Melvin Hillsman) Date: Mon, 3 Dec 2018 17:13:42 -0600 Subject: [sigs] Monthly Update Message-ID: Hi everyone, During the Forum we discussed one simple way we could move forward to hopefully get more visibility and activity within SIGs. Here is a proposal for such a step. Send out a monthly email to openstack-discuss with the following information from each SIG captured via etherpad [0] 1. What success(es) have you had this month as a SIG? 2. What should we know about the SIG for the next month? 3. What would you like help (hands) or feedback (eyes) on? Besides the ML, other places this could be re-used in whole or part is on social media, SU Blog, etc. Thoughts? [0] https://etherpad.openstack.org/p/sig-updates -- Kind regards, Melvin Hillsman mrhillsman at gmail.com mobile: (832) 264-2646 -------------- next part -------------- An HTML attachment was scrubbed... URL: From smooney at redhat.com Mon Dec 3 23:30:22 2018 From: smooney at redhat.com (Sean Mooney) Date: Mon, 03 Dec 2018 23:30:22 +0000 Subject: OpenStack Summit Berlin Videos Now Available In-Reply-To: References: <5C057470.8050405@openstack.org> <636ad729-570e-c673-c33d-9b6a2382ece0@gmail.com> <5C059627.9040304@openstack.org> <5C059A96.8030504@openstack.org> Message-ID: On Mon, 2018-12-03 at 14:16 -0700, David Medberry wrote: > Hmmm, if you can HEAR the speaker and SEE the slides (as in YVR), seems like that should be sufficient. that would be my peference also. it is nice to be able to see presenteres but their slides/laptop screen are the more important content that said im glad that they are available. > There's usually a photo of the speaker on their bio page if you need more "presence". > > -dave > > On Mon, Dec 3, 2018 at 2:05 PM Jimmy McArthur wrote: > > Yeah, that makes sense. We had multiple complaints coming out of YVR that the size of the speaker was too small. So > > we're trying to work out a happy medium that can still work within our budget. > > > > Appreciate the feedback :) > > > > > Matt Riedemann December 3, 2018 at 3:01 PM > > > > > > > > > Here is a good example of what I'm talking about: > > > > > > https://youtu.be/J9K-x0yVZ4U?t=425 > > > > > > There is full view of the slides, but my eyes can't read most of that text. Compare that to YVR: > > > > > > https://youtu.be/U5V_2CUj-6A?t=576 > > > > > > And it's night and day. one factor in that may be that the videos are uploaded in 720p at 50 rather then 1080p at 60 as they had been in vancouver. so far i have been able to view most of videos ok. the room where the project updates were is proably the one with the worst lighting. the room were the lights at the front were dimmed are quite good. the shorter videos/ market place demos like https://www.youtube.com/watch?v=hzcrjk-tgLk are certenly eaiser to view the presented content but most of the larger rooms are visable. > > > > > > Jimmy McArthur December 3, 2018 at 2:46 PM > > > In Berlin, in rooms where we had a full view of the screen, we didn't do a second screen for slides only. As > > > mentioned, presenters can upload their slides to help with that. > > > > > > For places like the Marketplace demo theater where we had a smaller screen format, we added the view of both > > > presenter and slide: https://www.openstack.org/videos/berlin-2018/how-to-avoid-vendor-lock-in-in-a-multi-cloud-wor > > > ld-with-zenko > > > > > > We're looking at ways to improve both formats in Denver, so I'd say stand by. If there is a presentation that you > > > feel is too difficult to follow, we can reach out to those presenters and encourage them again to upload their > > > slides. > > > > > > > > > > > > Matt Riedemann December 3, 2018 at 2:32 PM > > > > > > > > > So uh, I don't really want to be that guy, but I'm sure others have noticed the deal with the slides being > > > different in the recordings from years past, in that you can't view them (hopefully people are uploading their > > > slides). I'm mostly curious if there was a reason for that? Budget cuts? Technical issues? > > > > > > Jimmy McArthur December 3, 2018 at 12:22 PM > > > Thank you again for a wonderful Summit in Berlin. I'm pleased to announce the Summit Videos are now up on the > > > openstack.org website: https://www.openstack.org/videos/summits/berlin-2018 If there was a session you missed, > > > now is your chance to catch up! These videos will also be available in the Summit App as well as on the web under > > > the Berlin Summit Schedule (https://www.openstack.org/summit/berlin-2018/summit-schedule/). > > > > > > If you have any questions or concerns about the videos, please write speakersupport at openstack.org. > > > > > > Cheers, > > > Jimmy > > > > > > _______________________________________________ > > > Staff mailing list > > > Staff at lists.openstack.org > > > http://lists.openstack.org/cgi-bin/mailman/listinfo/staff > > From smooney at redhat.com Mon Dec 3 23:42:19 2018 From: smooney at redhat.com (Sean Mooney) Date: Mon, 03 Dec 2018 23:42:19 +0000 Subject: [infra] A change to Zuul's queuing behavior In-Reply-To: <87bm62z4av.fsf@meyer.lemoncheese.net> References: <87bm62z4av.fsf@meyer.lemoncheese.net> Message-ID: On Mon, 2018-12-03 at 13:30 -0800, James E. Blair wrote: > Hi, > > We recently made a change to how Zuul and Nodepool prioritize node > requests. Cloud resources are the major constraint in how long it takes > Zuul to run test jobs on proposed changes. Because we're using more > resources than ever before (but not necessarily because we're doing more > work -- Clark has been helping to identify inefficiencies in other > mailing list threads), the amount of time it takes to receive results on > a change has been increasing. > > Since some larger projects consume the bulk of cloud resources in our > system, this can be especially frustrating for smaller projects. To be > sure, it impacts everyone, but while larger projects receive a > continuous stream of results (even if delayed) smaller projects may wait > hours before seeing results on a single change. > > In order to help all projects maintain a minimal velocity, we've begun > dynamically prioritizing node requests based on the number of changes a > project has in a given pipeline. > > This means that the first change for every project in the check pipeline > has the same priority. The same is true for the second change of each > project in the pipeline. The result is that if a project has 50 changes > in check, and another project has a single change in check, the second > project won't have to wait for all 50 changes ahead before it gets nodes > allocated. i could be imagineing this but is this not how zuul v2 used to work or rather how the gate was configured a few cycles ago. i remember in the past when i was working on smaller projects it was often quicker to submit patches to those instead fo nova for example. in partacal i remember working on both os-vif and nova in the past and finding my os-vif jobs would often get started much quicker then nova. anyway i think this is hopefully a good change for the majority of projects but it triggered of feeling of deja vu, was this how the gates used to run? > As conditions change (requests are fulfilled, changes are > added and removed) the priorities of any unfulfilled requests are > adjusted accordingly. > > In the gate pipeline, the grouping is by shared change queue. But the > gate pipeline still has a higher overall precedence than check. > > We hope that this will make for a significant improvement in the > experience for smaller projects without causing undue hardship for > larger ones. > We will be closely observing the new behavior and make any > necessary tuning adjustments over the next few weeks. Please let us > know if you see any adverse impacts, but don't be surprised if you > notice node requests being filled "out of order". > > -Jim > From strigazi at gmail.com Mon Dec 3 23:13:52 2018 From: strigazi at gmail.com (Spyros Trigazis) Date: Tue, 4 Dec 2018 00:13:52 +0100 Subject: [openstack-dev] [magnum] kubernetes images for magnum rocky In-Reply-To: References: Message-ID: Magnum queens, uses kubernetes 1.9.3 by default. You can upgrade to v1.10.11-1. From a quick test v1.11.5-1 is also compatible with 1.9.x. We are working to make this painless, sorry you have to ssh to the nodes for now. Cheers, Spyros On Mon, 3 Dec 2018 at 23:24, Spyros Trigazis wrote: > Hello all, > > Following the vulnerability [0], with magnum rocky and the kubernetes > driver > on fedora atomic you can use this tag "v1.11.5-1" [1] for new clusters. To > upgrade > the apiserver in existing clusters, on the master node(s) you can run: > sudo atomic pull --storage ostree > docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 > sudo atomic containers update --rebase > docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 kube-apiserver > > You can upgrade the other k8s components with similar commands. > > I'll share instructions for magnum queens tomorrow morning CET time. > > Cheers, > Spyros > > [0] https://github.com/kubernetes/kubernetes/issues/71411 > [1] https://hub.docker.com/r/openstackmagnum/kubernetes-apiserver/tags/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- __________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev From strigazi at gmail.com Mon Dec 3 23:13:52 2018 From: strigazi at gmail.com (Spyros Trigazis) Date: Tue, 4 Dec 2018 00:13:52 +0100 Subject: [Openstack-operators] [openstack-dev][magnum] kubernetes images for magnum rocky In-Reply-To: References: Message-ID: Magnum queens, uses kubernetes 1.9.3 by default. You can upgrade to v1.10.11-1. From a quick test v1.11.5-1 is also compatible with 1.9.x. We are working to make this painless, sorry you have to ssh to the nodes for now. Cheers, Spyros On Mon, 3 Dec 2018 at 23:24, Spyros Trigazis wrote: > Hello all, > > Following the vulnerability [0], with magnum rocky and the kubernetes > driver > on fedora atomic you can use this tag "v1.11.5-1" [1] for new clusters. To > upgrade > the apiserver in existing clusters, on the master node(s) you can run: > sudo atomic pull --storage ostree > docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 > sudo atomic containers update --rebase > docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 kube-apiserver > > You can upgrade the other k8s components with similar commands. > > I'll share instructions for magnum queens tomorrow morning CET time. > > Cheers, > Spyros > > [0] https://github.com/kubernetes/kubernetes/issues/71411 > [1] https://hub.docker.com/r/openstackmagnum/kubernetes-apiserver/tags/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- _______________________________________________ OpenStack-operators mailing list OpenStack-operators at lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators From juliaashleykreger at gmail.com Mon Dec 3 23:53:45 2018 From: juliaashleykreger at gmail.com (Julia Kreger) Date: Mon, 3 Dec 2018 15:53:45 -0800 Subject: [all] Etcd as DLM In-Reply-To: <3147d433-13b4-3582-c831-25c29a5799ca@nemebean.com> References: <3147d433-13b4-3582-c831-25c29a5799ca@nemebean.com> Message-ID: I would like to slightly interrupt this train of thought for an unscheduled vision of the future! What if we could allow a component to store data in etcd3's key value store like how we presently use oslo_db/sqlalchemy? While I personally hope to have etcd3 as a DLM for ironic one day, review bandwidth permitting, it occurs to me that etcd3 could be leveraged for more than just DLM. If we have a common vision to enable data storage, I suspect it might help provide overall guidance as to how we want to interact with the service moving forward. -Julia On Mon, Dec 3, 2018 at 2:52 PM Ben Nemec wrote: > Hi, > > I wanted to revisit this topic because it has come up in some downstream > discussions around Cinder A/A HA and the last time we talked about it > upstream was a year and a half ago[1]. There have certainly been changes > since then so I think it's worth another look. For context, the > conclusion of that session was: > > "Let's use etcd 3.x in the devstack CI, projects that are eventlet based > an use the etcd v3 http experimental API and those that don't can use > the etcd v3 gRPC API. Dims will submit a patch to tooz for the new > driver with v3 http experimental API. Projects should feel free to use > the DLM based on tooz+etcd3 from now on. Others projects can figure out > other use cases for etcd3." > > The main question that has come up is whether this is still the best > practice or if we should revisit the preferred drivers for etcd. Gorka > has gotten the grpc-based driver working in a Cinder driver that needs > etcd[2], so there's a question as to whether we still need the HTTP > etcd-gateway or if everything should use grpc. I will admit I'm nervous > about trying to juggle eventlet and grpc, but if it works then my only > argument is general misgivings about doing anything clever that involves > eventlet. :-) > > It looks like the HTTP API for etcd has moved out of experimental > status[3] at this point, so that's no longer an issue. There was some > vague concern from a downstream packaging perspective that the grpc > library might use a funky build system, whereas the etcd3-gateway > library only depends on existing OpenStack requirements. > > On the other hand, I don't know how much of a hassle it is to deploy and > manage a grpc-gateway. I'm kind of hoping someone has already been down > this road and can advise about what they found. > > Thanks. > > -Ben > > 1: https://etherpad.openstack.org/p/BOS-etcd-base-service > 2: > > https://github.com/embercsi/ember-csi/blob/5bd4dffe9107bc906d14a45cd819d9a659c19047/ember_csi/ember_csi.py#L1106-L1111 > 3: https://github.com/grpc-ecosystem/grpc-gateway > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From dangtrinhnt at gmail.com Tue Dec 4 00:09:32 2018 From: dangtrinhnt at gmail.com (Trinh Nguyen) Date: Tue, 4 Dec 2018 09:09:32 +0900 Subject: [Searchlight][infra] tox failed tests at zuul check only In-Reply-To: <20181203170339.psadnws63wfywtrs@yuggoth.org> References: <20181203170339.psadnws63wfywtrs@yuggoth.org> Message-ID: Thank Jeremy for the clear instructions. On Tue, Dec 4, 2018 at 2:05 AM Jeremy Stanley wrote: > On 2018-12-04 00:28:30 +0900 (+0900), Trinh Nguyen wrote: > > Currently, [1] fails tox py27 tests on Zuul check for just updating the > log > > text. The tests are successful at local dev env. Just wondering there is > > any new change at Zuul CI? > > > > [1] https://review.openstack.org/#/c/619162/ > > I don't know of any recent changes which would result in the > indicated test failures. According to the log it looks like it's a > functional testsuite and the tests are failing to connect to the > search API. I don't see your job collecting any service logs > however, so it's unclear whether the API service is failing to > start, or spontaneously crashes, or something else is going on. My > first guess would be that one of your dependencies has released and > brought some sort of regression. > > According to > > http://zuul.openstack.org/builds?job_name=openstack-tox-py27&project=openstack%2Fsearchlight&branch=master > the last time that job passed for your repo was 2018-11-07 with the > installed package versions listed in the > > http://logs.openstack.org/56/616056/1/gate/openstack-tox-py27/e413441/tox/py27-5.log > file, and the first failure I see matching the errors in yours ran > with the versions in > > http://logs.openstack.org/62/619162/1/check/openstack-tox-py27/809a281/tox/py27-5.log > on 2018-11-21 (it wasn't run for the intervening 2 weeks so we have > a fairly large window of potential external breakage there). A diff > of those suggests the following dependencies updated between them: > > coverage: 4.5.1 -> 4.5.2 > cryptography: 2.3.1 -> 2.4.1 > httplib2: 0.11.3 -> 0.12.0 > oslo.cache: 1.31.1 -> 1.31.0 (downgraded) > oslo.service: 1.32.0 -> 1.33.0 > python-neutronclient: 6.10.0 -> 6.11.0 > requests: 2.20.0 -> 2.20.1 > WebOb: 1.8.3 -> 1.8.4 > > Make sure with your local attempts at reproduction you're running > with these newer versions of dependencies, for example by clearing > any existing tox envs with the -r flag or `git clean -dfx` so that > stale versions aren't used instead. > -- > Jeremy Stanley > -- *Trinh Nguyen* *www.edlab.xyz * -------------- next part -------------- An HTML attachment was scrubbed... URL: From fungi at yuggoth.org Tue Dec 4 00:05:28 2018 From: fungi at yuggoth.org (Jeremy Stanley) Date: Tue, 4 Dec 2018 00:05:28 +0000 Subject: [all] The old mailing lists are now retired In-Reply-To: <20181119000426.hpgshg6ln5652pvt@yuggoth.org> References: <20181109181447.qhutsauxl4fuinnh@yuggoth.org> <20181119000426.hpgshg6ln5652pvt@yuggoth.org> Message-ID: <20181204000527.mdeesmrtlloej3ye@yuggoth.org> The openstack, openstack-dev, openstack-sigs and openstack-operators mailing lists were replaced by openstack-discuss. Starting now the old lists are no longer receiving new posts, but their addresses are aliased to the new list for the convenience of anyone replying to an earlier message. If you happen to notice one of the old list addresses in a reply you're writing, please take a moment to update it to the correct one. Here follow some brief notes on the nature of this new list: 1. We have documented[*] subject tags we want to use. Most of our current needs are probably already covered there, but if you notice something missing you can correct it by posting a change for code review to the doc/source/open-community.rst file in the openstack/project-team-guide Git repository. Because we're interested in moving to Mailman 3 as our listserv in the not-too-distant future and the upstream Mailman maintainers decided to drop support for server-side topic filters, you'll need to set up client-side mail filtering if you're only interested in seeing messages for a subset of them. 2. Remember there is no Subject header mangling on this list, so if you want to perform client-side matching it's strongly recommended you use the List-Id header to identify it. You'll likely also notice there is no list footer appended to every message. Further, the From and Reply-To headers from the original message are unaltered by the listserv. These changes in behavior from our previous lists are part of an effort to avoid creating unnecessary DMARC/DKIM violations. A mailreader with reply-to-list functionality is strongly recommended. If you're unfortunate enough not to be using such a client, you may be able to get away with using reply-to-all and then removing any irrelevant addresses (making sure to still include the mailing list's posting address). 3. Please take a moment to review our netiquette guide[**] for participating in OpenStack mailing lists. [*] https://docs.openstack.org/project-team-guide/open-community.html#mailing-lists [**] https://wiki.openstack.org/wiki/MailingListEtiquette -- Jeremy Stanley -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 963 bytes Desc: not available URL: From strigazi at gmail.com Tue Dec 4 00:24:21 2018 From: strigazi at gmail.com (Spyros Trigazis) Date: Tue, 4 Dec 2018 01:24:21 +0100 Subject: [openstack-dev][magnum] kubernetes images for magnum rocky In-Reply-To: References:

Message-ID: Hello again, address space issues: # uninstall the running container sudo atomic uninstall kube-apiserver # delete the old image, check which one you use sudo atomic images delete --storage ostree docker.io/openstackmagnum/kubernetes-apiserver:v1.9.3 # prune to actually claim the space back sudo atomic images prune # install the new image sudo atomic install --system --storage ostree --name kube-apiserver docker.io/openstackmagnum/kubernetes-apiserver:v1.10.11-1 # start the service sudo systemctl start kube-apiserver I haven't used it, but there is an ansible module [0]. Cheers, Spyros [0] https://docs.ansible.com/ansible/2.5/modules/atomic_container_module.html On Tue, 4 Dec 2018 at 00:13, Spyros Trigazis wrote: > Magnum queens, uses kubernetes 1.9.3 by default. > You can upgrade to v1.10.11-1. From a quick test > v1.11.5-1 is also compatible with 1.9.x. > > We are working to make this painless, sorry you > have to ssh to the nodes for now. > > Cheers, > Spyros > > On Mon, 3 Dec 2018 at 23:24, Spyros Trigazis wrote: > >> Hello all, >> >> Following the vulnerability [0], with magnum rocky and the kubernetes >> driver >> on fedora atomic you can use this tag "v1.11.5-1" [1] for new clusters. >> To upgrade >> the apiserver in existing clusters, on the master node(s) you can run: >> sudo atomic pull --storage ostree >> docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 >> sudo atomic containers update --rebase >> docker.io/openstackmagnum/kubernetes-apiserver:v1.11.5-1 kube-apiserver >> >> You can upgrade the other k8s components with similar commands. >> >> I'll share instructions for magnum queens tomorrow morning CET time. >> >> Cheers, >> Spyros >> >> [0] https://github.com/kubernetes/kubernetes/issues/71411 >> [1] https://hub.docker.com/r/openstackmagnum/kubernetes-apiserver/tags/ >> > -------------- next part -------------- An HTML attachment was scrubbed... URL: From Kevin.Fox at pnnl.gov Tue Dec 4 00:55:31 2018 From: Kevin.Fox at pnnl.gov (Fox, Kevin M) Date: Tue, 4 Dec 2018 00:55:31 +0000 Subject: [all] Etcd as DLM In-Reply-To: References: <3147d433-13b4-3582-c831-25c29a5799ca@nemebean.com>, Message-ID: <1A3C52DFCD06494D8528644858247BF01C24C6BD@EX10MBOX03.pnnl.gov> It is a full base service already: https://governance.openstack.org/tc/reference/base-services.html Projects have been free to use it for quite some time. I'm not sure if any actually are yet though. It was decided not to put an abstraction layer on top as its pretty simple and commonly deployed. Thanks, Kevin ________________________________ From: Julia Kreger [juliaashleykreger at gmail.com] Sent: Monday, December 03, 2018 3:53 PM To: Ben Nemec Cc: Davanum Srinivas; geguileo at redhat.com; openstack-discuss at lists.openstack.org Subject: Re: [all] Etcd as DLM I would like to slightly interrupt this train of thought for an unscheduled vision of the future! What if we could allow a component to store data in etcd3's key value store like how we presently use oslo_db/sqlalchemy? While I personally hope to have etcd3 as a DLM for ironic one day, review bandwidth permitting, it occurs to me that etcd3 could be leveraged for more than just DLM. If we have a common vision to enable data storage, I suspect it might help provide overall guidance as to how we want to interact with the service moving forward. -Julia On Mon, Dec 3, 2018 at 2:52 PM Ben Nemec > wrote: Hi, I wanted to revisit this topic because it has come up in some downstream discussions around Cinder A/A HA and the last time we talked about it upstream was a year and a half ago[1]. There have certainly been changes since then so I think it's worth another look. For context, the conclusion of that session was: "Let's use etcd 3.x in the devstack CI, projects that are eventlet based an use the etcd v3 http experimental API and those that don't can use the etcd v3 gRPC API. Dims will submit a patch to tooz for the new driver with v3 http experimental API. Projects should feel free to use the DLM based on tooz+etcd3 from now on. Others projects can figure out other use cases for etcd3." The main question that has come up is whether this is still the best practice or if we should revisit the preferred drivers for etcd. Gorka has gotten the grpc-based driver working in a Cinder driver that needs etcd[2], so there's a question as to whether we still need the HTTP etcd-gateway or if everything should use grpc. I will admit I'm nervous about trying to juggle eventlet and grpc, but if it works then my only argument is general misgivings about doing anything clever that involves eventlet. :-) It looks like the HTTP API for etcd has moved out of experimental status[3] at this point, so that's no longer an issue. There was some vague concern from a downstream packaging perspective that the grpc library might use a funky build system, whereas the etcd3-gateway library only depends on existing OpenStack requirements. On the other hand, I don't know how much of a hassle it is to deploy and manage a grpc-gateway. I'm kind of hoping someone has already been down this road and can advise about what they found. Thanks. -Ben 1: https://etherpad.openstack.org/p/BOS-etcd-base-service 2: https://github.com/embercsi/ember-csi/blob/5bd4dffe9107bc906d14a45cd819d9a659c19047/ember_csi/ember_csi.py#L1106-L1111 3: https://github.com/grpc-ecosystem/grpc-gateway -------------- next part -------------- An HTML attachment was scrubbed... URL: From mike.carden at gmail.com Tue Dec 4 02:04:02 2018 From: mike.carden at gmail.com (Mike Carden) Date: Tue, 4 Dec 2018 13:04:02 +1100 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: Having found the nice docs at: https://docs.openstack.org/tripleo-docs/latest/install/containers_deployment/tips_tricks.html I have divined that I can ssh to each controller node and: sudo docker exec -u root nova_scheduler crudini --set /etc/nova/nova.conf placement randomize_allocation_candidates true sudo docker kill -s SIGHUP nova_scheduler ...and indeed the /etc/nova/nova.conf in each nova_scheduler container is updated accordingly. Unfortunately, instances are all still launched on compute-0. -- MC -------------- next part -------------- An HTML attachment was scrubbed... URL: From liuyulong.xa at gmail.com Tue Dec 4 02:04:35 2018 From: liuyulong.xa at gmail.com (LIU Yulong) Date: Tue, 4 Dec 2018 10:04:35 +0800 Subject: [openstack-dev] [Neutron] Propose Hongbin Lu for Neutron core In-Reply-To: <493CB94D-19C3-4B61-8577-6BD98006B7F5@redhat.com> References: <493CB94D-19C3-4B61-8577-6BD98006B7F5@redhat.com> Message-ID: +1 On Tue, Dec 4, 2018 at 6:43 AM Slawomir Kaplonski wrote: > Definitely big +1 from me! > > — > Slawek Kaplonski > Senior software engineer > Red Hat > > > Wiadomość napisana przez Miguel Lavalle w dniu > 03.12.2018, o godz. 23:14: > > > > Hi Stackers, > > > > I want to nominate Hongbin Lu (irc: hongbin) as a member of the Neutron > core team. Hongbin started contributing to the OpenStack community in the > Liberty cycle. Over time, he made great contributions in helping the > community to better support containers by being core team member and / or > PTL in projects such as Zun and Magnum. An then, fortune played in our > favor and Hongbin joined the Neutron team in the Queens cycle. Since then, > he has made great contributions such as filters validation in the ReST API, > PF status propagation to to VFs (ports) in SR-IOV environments and leading > the forking of RYU into the os-ken OpenStack project, which provides key > foundational functionality for openflow. He is not a man who wastes words, > but when he speaks up, his opinions are full of insight. This is reflected > in the quality of his code reviews, which in number are on par with the > leading members of the core team: > http://stackalytics.com/?module=neutron-group. Even though Hongbin leaves > in Toronto, he speaks Mandarin Chinese and was born and raised in China. > This is a big asset in helping the Neutron team to incorporate use cases > from that part of the world. > > > > Hongbin spent the past few months being mentored by Slawek Kaplonski, > who has reported that Hongbin is ready for the challenge of being a core > team member. I (and other core team members) concur. > > > > I will keep this nomination open for a week as customary. > > > > Thank you > > > > Miguel > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From liuyulong.xa at gmail.com Tue Dec 4 02:04:51 2018 From: liuyulong.xa at gmail.com (LIU Yulong) Date: Tue, 4 Dec 2018 10:04:51 +0800 Subject: [openstack-dev] [Neutron] Propose Nate Johnston for Neutron core In-Reply-To: References:

Message-ID: +1 On Tue, Dec 4, 2018 at 6:44 AM Slawomir Kaplonski wrote: > Big +1 from me for Nate also :) > > — > Slawek Kaplonski > Senior software engineer > Red Hat > > > Wiadomość napisana przez Miguel Lavalle w dniu > 03.12.2018, o godz. 22:38: > > > > Hi Stackers, > > > > I want to nominate Nate Johnston (irc:njohnston) as a member of the > Neutron core team. Nate started contributing to Neutron back in the Liberty > cycle. One of the highlight contributions of that early period is his > collaboration with others to implement DSCP QoS rules ( > https://review.openstack.org/#/c/251738/). After a hiatus of a few > cycles, we were lucky to have Nate come back to the community during the > Rocky cycle. Since then, he has been a driving force in the adoption in > Neutron of Oslo Versioned Objects, the "Run under Python 3 by default" > community wide initiative and the optimization of ports creation in bulk to > better support containerized workloads. He is a man with a wide range of > interests, who is not afraid of expressing his opinions in any of them. > The quality and number of his code reviews during the Stein cycle is on par > with the leading members of the core team: > http://stackalytics.com/?module=neutron-group. I especially admire his > ability to forcefully handle disagreement in a friendly and easy going > manner. > > > > On top of all that, he graciously endured me as his mentor over the past > few months. For all these reasons, I think he is ready to join the team and > we will be very lucky to have him as a fully voting core. > > > > I will keep this nomination open for a week as customary. > > > > Thank you > > > > Miguel > > > > > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From juliaashleykreger at gmail.com Tue Dec 4 02:47:25 2018 From: juliaashleykreger at gmail.com (Julia Kreger) Date: Mon, 3 Dec 2018 18:47:25 -0800 Subject: [all] Etcd as DLM In-Reply-To: <1A3C52DFCD06494D8528644858247BF01C24C6BD@EX10MBOX03.pnnl.gov> References: <3147d433-13b4-3582-c831-25c29a5799ca@nemebean.com> <1A3C52DFCD06494D8528644858247BF01C24C6BD@EX10MBOX03.pnnl.gov> Message-ID: Indeed it is a considered a base service, but I'm unaware of why it was decided to not have any abstraction layer on top. That sort of defeats the adoption of tooz as a standard in the community. Plus with the rest of our code bases, we have a number of similar or identical patterns and it would be ideal to have a single library providing the overall interface for the purposes of consistency. Could you provide some more background on that decision? I guess what I'd really like to see is an oslo.db interface into etcd3. -Julia On Mon, Dec 3, 2018 at 4:55 PM Fox, Kevin M wrote: > It is a full base service already: > https://governance.openstack.org/tc/reference/base-services.html > > Projects have been free to use it for quite some time. I'm not sure if any > actually are yet though. > > It was decided not to put an abstraction layer on top as its pretty simple > and commonly deployed. > > Thanks, > Kevin > ------------------------------ > *From:* Julia Kreger [juliaashleykreger at gmail.com] > *Sent:* Monday, December 03, 2018 3:53 PM > *To:* Ben Nemec > *Cc:* Davanum Srinivas; geguileo at redhat.com; > openstack-discuss at lists.openstack.org > *Subject:* Re: [all] Etcd as DLM > > I would like to slightly interrupt this train of thought for an > unscheduled vision of the future! > > What if we could allow a component to store data in etcd3's key value > store like how we presently use oslo_db/sqlalchemy? > > While I personally hope to have etcd3 as a DLM for ironic one day, review > bandwidth permitting, it occurs to me that etcd3 could be leveraged for > more than just DLM. If we have a common vision to enable data storage, I > suspect it might help provide overall guidance as to how we want to > interact with the service moving forward. > > -Julia > > On Mon, Dec 3, 2018 at 2:52 PM Ben Nemec wrote: > >> Hi, >> >> I wanted to revisit this topic because it has come up in some downstream >> discussions around Cinder A/A HA and the last time we talked about it >> upstream was a year and a half ago[1]. There have certainly been changes >> since then so I think it's worth another look. For context, the >> conclusion of that session was: >> >> "Let's use etcd 3.x in the devstack CI, projects that are eventlet based >> an use the etcd v3 http experimental API and those that don't can use >> the etcd v3 gRPC API. Dims will submit a patch to tooz for the new >> driver with v3 http experimental API. Projects should feel free to use >> the DLM based on tooz+etcd3 from now on. Others projects can figure out >> other use cases for etcd3." >> >> The main question that has come up is whether this is still the best >> practice or if we should revisit the preferred drivers for etcd. Gorka >> has gotten the grpc-based driver working in a Cinder driver that needs >> etcd[2], so there's a question as to whether we still need the HTTP >> etcd-gateway or if everything should use grpc. I will admit I'm nervous >> about trying to juggle eventlet and grpc, but if it works then my only >> argument is general misgivings about doing anything clever that involves >> eventlet. :-) >> >> It looks like the HTTP API for etcd has moved out of experimental >> status[3] at this point, so that's no longer an issue. There was some >> vague concern from a downstream packaging perspective that the grpc >> library might use a funky build system, whereas the etcd3-gateway >> library only depends on existing OpenStack requirements. >> >> On the other hand, I don't know how much of a hassle it is to deploy and >> manage a grpc-gateway. I'm kind of hoping someone has already been down >> this road and can advise about what they found. >> >> Thanks. >> >> -Ben >> >> 1: https://etherpad.openstack.org/p/BOS-etcd-base-service >> 2: >> >> https://github.com/embercsi/ember-csi/blob/5bd4dffe9107bc906d14a45cd819d9a659c19047/ember_csi/ember_csi.py#L1106-L1111 >> 3: https://github.com/grpc-ecosystem/grpc-gateway >> >> -------------- next part -------------- An HTML attachment was scrubbed... URL: From aschultz at redhat.com Tue Dec 4 03:46:05 2018 From: aschultz at redhat.com (Alex Schultz) Date: Mon, 3 Dec 2018 20:46:05 -0700 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: On Mon, Dec 3, 2018 at 7:06 PM Mike Carden wrote: > > > Having found the nice docs at: > https://docs.openstack.org/tripleo-docs/latest/install/containers_deployment/tips_tricks.html > > I have divined that I can ssh to each controller node and: > sudo docker exec -u root nova_scheduler crudini --set /etc/nova/nova.conf placement randomize_allocation_candidates true > sudo docker kill -s SIGHUP nova_scheduler > FYI protip, you can add the following to a custom environment file to configure this value (as we don't expose the config by default) parameters_defaults: ControllerExtraConfig: nova::config::nova_config: placement/randomize_allocation_candidates: value: true And then do a deployment. This will persist it and ensure future scaling/management updates won't remove this configuration. > ...and indeed the /etc/nova/nova.conf in each nova_scheduler container is updated accordingly. > > Unfortunately, instances are all still launched on compute-0. > > -- > MC > > From miguel at mlavalle.com Tue Dec 4 04:00:18 2018 From: miguel at mlavalle.com (Miguel Lavalle) Date: Mon, 3 Dec 2018 22:00:18 -0600 Subject: [openstack-dev] [Neutron] Bugs deputy report week of November 26th Message-ID: Hi Neutron team, I was the bugs deputy the week of November 26th. It was a relatively quite week. These are the bugs reported during the period: *Medium priority* - https://bugs.launchpad.net/neutron/+bug/1805824, The dhcp port's address may be messed when the port's network has multiple subnets. Fix proposed here: https://review.openstack.org/#/c/620900/. It undoes a previous fix, https://bugs.launchpad.net/neutron/+bug/1581918, so another alternative has to be found - https://bugs.launchpad.net/neutron/+bug/1805808, Openvswitch firewall driver don't reinitialize after ovs-vswitchd restart. Fix proposed here: https://review.openstack.org/620886 - https://bugs.launchpad.net/neutron/+bug/1805456, [DVR] Neutron doesn't configure multiple external subnets for one network properly. Owner assigned *Low priority* - https://bugs.launchpad.net/neutron/+bug/1805844*, *When debugging fullstack tests, "cmd" module is incorrectly imported*. *Fix already in progress: https://review.openstack.org/620916 - https://bugs.launchpad.net/neutron/+bug/1805126, confusing wording in config-dns-int.rst. Fixed proposed: https://review.openstack.org/620017 *Incomplete* - https://bugs.launchpad.net/neutron/+bug/1805769, maximum RPC response timeout is not reasonable. Requested clarification from submitter - https://bugs.launchpad.net/neutron/+bug/1805356, Convert instance method to staticmethod in linux bridge agent. Requested clarification from submitter *Needs further investigation* - https://bugs.launchpad.net/neutron/+bug/1805132, bulk creation of security group rules fails StaleDataError. Couldn't reproduce -------------- next part -------------- An HTML attachment was scrubbed... URL: From mike.carden at gmail.com Tue Dec 4 04:10:36 2018 From: mike.carden at gmail.com (Mike Carden) Date: Tue, 4 Dec 2018 15:10:36 +1100 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: On Tue, Dec 4, 2018 at 2:46 PM Alex Schultz wrote: > > > parameters_defaults: > ControllerExtraConfig: > nova::config::nova_config: > placement/randomize_allocation_candidates: > value: true Thanks for that Alex. I'll roll that into our next over-the-top deploy update. I won't hold my breath for it actually getting our scheduling sorted out though, since it made no difference when I manually updated all three controllers with that config. -- MC -------------- next part -------------- An HTML attachment was scrubbed... URL: From mrhillsman at gmail.com Tue Dec 4 04:12:19 2018 From: mrhillsman at gmail.com (Melvin Hillsman) Date: Mon, 3 Dec 2018 22:12:19 -0600 Subject: [openlab] Weekly Meeting Message-ID: Hi everyone, Please see the following links for full log of today’s meeting and a more concise summary: Full Log: https://meetings.openlabtesting.org/devops/2018/devops.2018-12-04-02.00.log.html Summary (Minutes): https://meetings.openlabtesting.org/devops/2018/devops.2018-12-04-02.00.html Help Wanted: Setup os_loganalyze – https://github.com/theopenlab/openlab/issues/137 There is always an opportunity to grab items off the project board – https://github.com/orgs/theopenlab/projects/1 If you have any questions regarding the meeting please send email response to this email for follow-up. -- Kind regards, Melvin Hillsman mrhillsman at gmail.com mobile: (832) 264-2646 -------------- next part -------------- An HTML attachment was scrubbed... URL: From tobias.urdin at binero.se Tue Dec 4 08:38:08 2018 From: tobias.urdin at binero.se (Tobias Urdin) Date: Tue, 4 Dec 2018 09:38:08 +0100 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: <0331f7bb-9e6d-5f75-5649-5bc5285585c8@binero.se> Started a patch to include that option in puppet-nova as well based on this thread which perhaps can help the TripleO based world as well. https://review.openstack.org/#/c/621593/ Best regards On 12/04/2018 04:56 AM, Alex Schultz wrote: > On Mon, Dec 3, 2018 at 7:06 PM Mike Carden wrote: >> >> Having found the nice docs at: >> https://docs.openstack.org/tripleo-docs/latest/install/containers_deployment/tips_tricks.html >> >> I have divined that I can ssh to each controller node and: >> sudo docker exec -u root nova_scheduler crudini --set /etc/nova/nova.conf placement randomize_allocation_candidates true >> sudo docker kill -s SIGHUP nova_scheduler >> > FYI protip, you can add the following to a custom environment file to > configure this value (as we don't expose the config by default) > > parameters_defaults: > ControllerExtraConfig: > nova::config::nova_config: > placement/randomize_allocation_candidates: > value: true > > > And then do a deployment. This will persist it and ensure future > scaling/management updates won't remove this configuration. > > > >> ...and indeed the /etc/nova/nova.conf in each nova_scheduler container is updated accordingly. >> >> Unfortunately, instances are all still launched on compute-0. >> >> -- >> MC >> >> > From balazs.gibizer at ericsson.com Tue Dec 4 09:00:43 2018 From: balazs.gibizer at ericsson.com (=?iso-8859-1?Q?Bal=E1zs_Gibizer?=) Date: Tue, 4 Dec 2018 09:00:43 +0000 Subject: [nova] When can/should we remove old nova-status upgrade checks? In-Reply-To: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> References: <41dda844-4466-84b6-6f47-3996d2b955cc@gmail.com> Message-ID: <1543914038.32372.1@smtp.office365.com> On Mon, Dec 3, 2018 at 5:38 PM, Matt Riedemann wrote: > Questions came up in review [1] about dropping an old "nova-status > upgrade check" which relies on using the in-tree placement database > models for testing the check. The check in question, "Resource > Providers", compares the number of compute node resource providers in > the nova_api DB against the number of compute nodes in all cells. > When the check was originally written in Ocata [2] it was meant to > help ease the upgrade where nova-compute needed to be configured to > report compute node resource provider inventory to placement so the > scheduler could use placement. It looks for things like >0 compute > nodes but 0 resource providers indicating the computes aren't > reporting into placement like they should be. In Ocata, if that > happened, and there were older compute nodes (from Newton), then the > scheduler would fallback to not use placement. That fallback code has > been removed. Also in Ocata, nova-compute would fail to start if > nova.conf wasn't configured for placement [3] but that has also been > removed. Now if nova.conf isn't configured for placement, I think > we'll just log an exception traceback but not actually fail the > service startup, and the node's resources wouldn't be available to > the scheduler, so you could get NoValidHost failures during > scheduling and need to dig into why a given compute node isn't being > used during scheduling. > > The question is, given this was added in Ocata to ease with the > upgrade to require placement, and we're long past that now, is the > check still useful? The check still has lots of newton/ocata/pike > comments in it, so it's showing its age. However, one could argue it > is still useful for base install verification, or for someone doing > FFU. If we keep this check, the related tests will need to be > re-written to use the placement REST API fixture since the in-tree > nova_api db tables will eventually go away because of extracted > placement. I'm OK to remove the check as during FFU one can install Rocky version of nova to run the check if needed. Anyhow if there is a need to keep the check, then I think we can change the implementation to read the hostname of each compute from the HostMapping and query the placement API with that hostname as a RP name then check that there is VCPU inventory at least on that RP. Cheers, gibi > > The bigger question is, what sort of criteria do we have for dropping > old checks like this besides when the related code, for which the > check was added, is removed? FFU kind of throws a wrench in > everything, but at the same time, I believe the prescribed FFU steps > are that online data migrations (and upgrade checks) are meant to be > run per-release you're fast-forward upgrading through. > > [1] > https://review.openstack.org/#/c/617941/26/nova/tests/unit/cmd/test_status.py > [2] https://review.openstack.org/#/c/413250/ > [3] > https://github.com/openstack/nova/blob/stable/ocata/nova/compute/manager.py#L1139 > > -- > > Thanks, > > Matt > From gmann at ghanshyammann.com Tue Dec 4 09:01:04 2018 From: gmann at ghanshyammann.com (Ghanshyam Mann) Date: Tue, 04 Dec 2018 18:01:04 +0900 Subject: [dev] [tc][all] TC office hours is started now on #openstack-tc Message-ID: <1677873098d.e1e2934268954.3300616982788651524@ghanshyammann.com> Hello everyone, TC office hour is started on #openstack-tc channel. Feel free to reach to us for anything you want discuss/input/feedback/help from TC. - gmann & TC From gmann at ghanshyammann.com Tue Dec 4 10:16:49 2018 From: gmann at ghanshyammann.com (Ghanshyam Mann) Date: Tue, 04 Dec 2018 19:16:49 +0900 Subject: [dev][nova][placement][qa] opinion on adding placement tests support in Tempest Message-ID: <16778b864ea.ed28ea0d72714.6704537180908793759@ghanshyammann.com> Hi All, As you all know, placement tests (in nova repo or in new placement repo) are implemented using gabbi functional test[1]. There is a patch from amodi about adding placement test in Tempest [2]. Currently, Tempest does not support the placement endpoints. To support placement API in Tempest, it does not need much work (i have listed the todo items in gerrit patch.). Before we start or proceed with the discussion in QA, i would like to get the nova(placement) team opinion on adding the placement support in Tempest. Obviously, we should not duplicate the testing effort between what existing gabbi tests cover or what going to be added in Tempest which we can take care while adding the new tests. [1] https://github.com/openstack/nova/tree/5f648dda49a6d5fe5ecfd7dddcb5f7dc3d6b51a6/nova/tests/functional/api/openstack/placement https://github.com/openstack/placement/tree/34f03c297e28ae2c46ab11debdb4bbe64df1acdc/placement/tests/functional [2] https://review.openstack.org/#/c/621645/2 -gmann From cdent+os at anticdent.org Tue Dec 4 10:55:08 2018 From: cdent+os at anticdent.org (Chris Dent) Date: Tue, 4 Dec 2018 10:55:08 +0000 (GMT) Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: On Tue, 4 Dec 2018, Mike Carden wrote: > Having found the nice docs at: > https://docs.openstack.org/tripleo-docs/latest/install/containers_deployment/tips_tricks.html > > I have divined that I can ssh to each controller node and: > sudo docker exec -u root nova_scheduler crudini --set /etc/nova/nova.conf > placement randomize_allocation_candidates true > sudo docker kill -s SIGHUP nova_scheduler > > ...and indeed the /etc/nova/nova.conf in each nova_scheduler container is > updated accordingly. > > Unfortunately, instances are all still launched on compute-0. Sorry this has been such a pain for you. There are a couple of issues/other things to try: * The 'randomize_allocation_candidates' config setting is used by the placement-api process (probably called nova-placement-api in queens), not the nova-scheduler process, so you need to update the config (in the placement section) for the former and restart it. * If that still doesn't fix it then it would be helpful to see the logs from both the placement-api and nova-scheduler process from around the time you try to launch some instances, as that will help show if there's some other factor at play that is changing the number of available target hosts, causing attempts on the other two hosts to not land. -- Chris Dent ٩◔̯◔۶ https://anticdent.org/ freenode: cdent tw: @anticdent From flavio at redhat.com Tue Dec 4 11:08:08 2018 From: flavio at redhat.com (Flavio Percoco) Date: Tue, 4 Dec 2018 12:08:08 +0100 Subject: [Nova] Increase size limits for user data Message-ID: Greetings, I've been working on a tool that requires creating CoreOS nodes on OpenStack. Sadly, I've hit the user data limit, which has blocked the work I'm doing. One big difference between CoreOS images and other cloud images out there is that CoreOS images don't use cloud-init but a different tool called Ignition[0], which uses JSON as its serialization format. The size of the configs that I need to pass to the instance is bigger than the limit imposed by Nova. I've worked on reducing the size as much as possible and even generating a compressed version of it but the data is still bigger than the limit (144 kb vs 65kb). I'd like to understand better what the nature of the limit is (is it because of the field size in the database? Is it purely an API limit? Is it because it causes problems depending on the vendor? As far as I can tell the limit is just being enforced by the API schema[1] and not the DB as it uses a MEDIUMTEXT field. I realize this has been asked before but I wanted to get a feeling of the current opinion about this. Would the Nova team consider increasing the limit of the API considering that more use cases like this may be more common these days? [0] https://coreos.com/ignition/docs/latest/ [1] https://github.com/openstack/nova/blob/master/nova/api/openstack/compute/schemas/servers.py#L212-L215 Thanks, Flavio -- @flaper87 Flavio Percoco From cdent+os at anticdent.org Tue Dec 4 11:13:44 2018 From: cdent+os at anticdent.org (Chris Dent) Date: Tue, 4 Dec 2018 11:13:44 +0000 (GMT) Subject: [dev][nova][placement][qa] opinion on adding placement tests support in Tempest In-Reply-To: <16778b864ea.ed28ea0d72714.6704537180908793759@ghanshyammann.com> References: <16778b864ea.ed28ea0d72714.6704537180908793759@ghanshyammann.com> Message-ID: On Tue, 4 Dec 2018, Ghanshyam Mann wrote: > Before we start or proceed with the discussion in QA, i would like to get the nova(placement) team opinion on adding the placement support in Tempest. Obviously, we should not duplicate the testing effort between what existing gabbi tests cover or what going to be added in Tempest which we can take care while adding the new tests. My feeling on this is that what should be showing up in tempest with regard to placement tests are things that demonstrate and prove end to end scenarios in which placement is involved as a critical part, but is in the background. For example, things like the emerging minimal bandwidth functionality that involves all three of nova, placement and neutron. I don't think we need extensive testing in Tempest of the placement API itself, as that's already well covered by the existing functional tests, nor do I think it makes much sense to cover the common scheduling scenarios between nova and placement as those are also well covered and will continue to be covered even with placement extracted [1]. Existing Tempests tests that do things like launching, resizing, migrating servers already touch placement so may be sufficient. If we wanted to make these more complete adding verification of resource providers and their inventories before and after the tests might be useful. [1] https://review.openstack.org/#/c/617941/ -- Chris Dent ٩◔̯◔۶ https://anticdent.org/ freenode: cdent tw: @anticdent From lajos.katona at ericsson.com Tue Dec 4 11:49:53 2018 From: lajos.katona at ericsson.com (Lajos Katona) Date: Tue, 4 Dec 2018 11:49:53 +0000 Subject: [dev][nova][placement][qa] opinion on adding placement tests support in Tempest In-Reply-To: References: <16778b864ea.ed28ea0d72714.6704537180908793759@ghanshyammann.com> Message-ID: <231b7347-1165-3917-80a1-88cf33c96de1@ericsson.com> Hi, I started to add a scenario test to neutron-tempest-plugin for bandwidth and for that some placement client to tempest. I plan to upload (possibly as WIP) first the client part and after that the scenario for bandwidth and for routed networks as that one uses placement as well. Regards Lajos On 2018. 12. 04. 12:13, Chris Dent wrote: > On Tue, 4 Dec 2018, Ghanshyam Mann wrote: > >> Before we start or proceed with the discussion in QA, i would like to >> get the nova(placement) team opinion on adding the placement support >> in Tempest. Obviously, we should not duplicate the testing effort >> between what existing gabbi tests cover or what going to be added in >> Tempest which we can take care while adding the new tests. > > My feeling on this is that what should be showing up in tempest with > regard to placement tests are things that demonstrate and prove end > to end scenarios in which placement is involved as a critical part, > but is in the background. For example, things like the emerging minimal > bandwidth functionality that involves all three of nova, placement > and neutron. > > I don't think we need extensive testing in Tempest of the placement > API itself, as that's already well covered by the existing > functional tests, nor do I think it makes much sense to cover the > common scheduling scenarios between nova and placement as those are > also well covered and will continue to be covered even with > placement extracted [1]. > > Existing Tempests tests that do things like launching, resizing, > migrating servers already touch placement so may be sufficient. If > we wanted to make these more complete adding verification of > resource providers and their inventories before and after the tests > might be useful. > > > [1] https://review.openstack.org/#/c/617941/ > From zufar at onf-ambassador.org Tue Dec 4 08:59:13 2018 From: zufar at onf-ambassador.org (Zufar Dhiyaulhaq) Date: Tue, 4 Dec 2018 15:59:13 +0700 Subject: [Openstack] unexpected distribution of compute instances in queens In-Reply-To: References: <815799a8-c2d1-39b4-ba4a-8cc0f0d7b5cf@gmail.com>

Message-ID: Hi all, I am facing this issue again, I try to add this configuration but still, the node is going to compute1. [scheduler] driver = filter_scheduler host_manager = host_manager [filter_scheduler] available_filters=nova.scheduler.filters.all_filters enabled_filters=RetryFilter,AvailabilityZoneFilter,RamFilter,DiskFilter,ComputeFilter,ComputeCapabilitiesFilter,ImagePropertiesFilter,ServerGroupAntiAffinityFilter,ServerGroupAffinityFilter,CoreFilter use_baremetal_filters=False weight_classes=nova.scheduler.weights.all_weighers [placement] randomize_allocation_candidates = true thank you. Best Regards, Zufar Dhiyaulhaq On Tue, Dec 4, 2018 at 3:55 AM Mike Carden wrote: > >> Presuming you are deploying Rocky or Queens, >> > > Yep, it's Queens. > > >> >> It goes in the nova.conf file under the [placement] section: >> >> randomize_allocation_candidates = true >> > > In triple-o land it seems like the config may need to be somewhere like > nova-scheduler.yaml and laid down via a re-deploy. > > Or something. > > The nova_scheduler runs in a container on a 'controller' host. > > -- > MC > > _______________________________________________ > Mailing list: > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > Post to : openstack at lists.openstack.org > Unsubscribe : > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack -------------- next part -------------- An HTML attachment was scrubbed... URL: