Re: [openstack-dev] [tripleo][tripleo-heat-template] how to get interface name from network name in service profile

[Saravanan KR]

On Wed, Aug 2, 2017 at 5:21 AM, Zenghui Shi  wrote:
>
> On Wed, 2 Aug 2017 at 02:34 Ben Nemec  wrote:
>>
>>
>>
>> On 07/25/2017 09:53 PM, Zenghui Shi wrote:
>> > Hi,
>> >
>> > Could anyone shed some light on how to get the physical interface name
>> > (e.g eth0) from network name (e.g PublicNetwork, ExternalNetwork) in
>> > tripleo-heat-template service profile ?
>> >
>> > for example:
>> >
>> > I want to add a service profile under puppet/services/time/ptp.pp where
>> > it uses 'PtpInterface' as a parameter to get physical interface name
>> > (please refer to below piece of code), but I'd like to expose a more
>> > user friendly parameter like NetworkName(e.g. provision network,
>> > external network etc) instead of 'PtpInterface' and retrieve the actual
>> > physical interface name from the NetworkName where the physical
>> > interface is connected to, is there any possible way to do this ?
>>
>> I don't think there is.  In many cases the templates don't even know the
>> name of the physical device on which the network will be running.  A
>> simple example would be when a user uses the nicX abstraction to specify
>> interfaces in their net-iso templates.  That doesn't get mapped to an
>> actual interface name until os-net-config runs, and the results of that
>> run are not available to the templates.
>
>
> Thanks Ben!
>
> I'm also thinking if it makes sense to have a way in template or target
> nodes to re-use the results of os-net-config for services which are bonded
> to certain interfaces, or re-implement the os-net-config logic in template
> to get the physical interface name. The latter one will be a repetitive work
> of os-net-config.

This patch [1] has been started by Dan Sneddon to provide the nic
number to name mapping by providing an extra option "--interfaces" to
os-net-config command. May this could be reused to get the mapping.

Regards,
Saravanan KR

[1] https://review.openstack.org/#/c/383516/

>
> Cheers!
> Zenghui
>>
>>
>> >
>> > 
>> > parameters:
>> > [...]
>> >PtpInterface:  #  ---> change this parameter to PtpNetwork
>> >  default: eth0
>> >  description: PTP interfaces name.
>> >  type: string
>> >
>> > resources:
>> >RoleParametersValue
>> >  type: OS::Heat::Value
>> >  properties:
>> >type: json
>> >value: # ---> add logic to get real interface name
>> > from PtpNetwork
>> >  map_replace:
>> >- map_replace:
>> >  - tripleo::profile::base::time::ptp::ptp4l_interface:
>> > PtpInterface
>> >  - values: {get_param: [RoleParameters]}
>> >- values:
>> >PtpInterface: {get_param: PtpInterface}
>> >
>> > outputs:
>> >role_data:
>> >  description: Role ptp using commposable services.
>> >  value:
>> >service_name: ptp
>> >config_settings:
>> >  map_merge:
>> >- get_attr: [RoleParametersValue, value]
>> > [...]
>> > 
>> >
>> > Thanks!
>> > zenghui
>> >
>> >
>> >
>> > __
>> > OpenStack Development Mailing List (not for usage questions)
>> > Unsubscribe:
>> > openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
>> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>> >
>
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [election][glance] Queens PTL candidacy

[Brian Rosmaita]

I just submitted https://review.openstack.org/#/c/489834/ , which
announces my candidacy as Glance PTL for the Queens cycle.  This is
what it says:

Hello everyone,

I'm asking for the opportunity to continue to serve as the PTL of
Glance into the Queens cycle.

Things looked good for Glance at the start of Pike.  We had a strong
set of active cores, and discussed plans at the PTG for recruiting
more developers to the team through holding bugsmash events and
developing a more organized approach to triaging bugs to a point where
they could be worked on by developers not yet experienced in working
with Glance.  We were interested in attracting new talent because we
had recently lost our team:diverse-affiliation tag [0] which was a
warning that Glance had become too reliant on two companies.  And in
fact when those companies decided to change direction early in the
cycle, the impact on Glance was devastating.  However, due to the hard
work of those who remained and developers from the wider community who
pitched in [1], we were able to complete a revised list of priorities
for Pike and did not require any kind of drastic intervention (such as
going into maintenance mode, which looked like a real possibility in
April).  And, on the plus side, we'll definitely be receiving the
team:diverse-affiliation tag the next time it's assessed.

The point of mentioning the above history is that I'd like to continue
the reorganization and recruitment work we'd discussed at the
beginning of Pike, which should improve the project's health for the
Rocky PTL, who will most likely not be me.  Or at least there's no
reason why it should be me, as some of my goals for Queens are to help
grow the Glance community and help any Glancer who's interested
(hopefully, more than one) get themselves into a position to become an
effective PTL.

So that's the general nature of what I think we should focus on in
Queens.  There are a few specifics that I should probably mention:

* Image import continued -- thanks to Erno's hard work, a minimal
viable product of image import has landed in Pike.  There are a few
obvious Glance-side improvements we can make, but at Pike RC-1 time, I
plan to notify operators that the MVP of image import is available,
they should look it over, and give us feedback on what enhancements
are necessary, and think about how they can direct development
resources to Glance to make those changes happen.

* Rolling upgrades -- we released zero-downtime upgrades as an
experimental feature in Ocata, but further work planned for Pike
(primarily, in-gate testing of upgrades) did not happen.  It's
important to get this completed in Queens.

* Operator communication -- the popular operator surveys that we were
using to gather usage information about Glance were another casuality
of the personnel situation in Pike; I'd like to get those going again.

Additionally, there are some small worthwhile features among the
untargeted approved specs that would be nice to land, and new specs
are already showing up in the Queens directory.  And of course Glance
will participate in the Queens community goals.  We'll sort out the
priorities at the PTG [2].

Finally, there's been some discussion on the ML about whether Glance
has outlived its usefulness and should be replaced [3,4].  I'm willing
to discuss that at the PTG, but as you can tell from the fact that I
listed it last, I think there's still a role for Glance in the Queens
cycle.

Thanks for reading, and thanks for your consideration,
brian

[0] 
https://git.openstack.org/cgit/openstack/governance/commit/?id=c0359e95153c3d3688d4ef6902a058204913a87a
[1] http://lists.openstack.org/pipermail/openstack-tc/2017-July/001444.html
[2] https://etherpad.openstack.org/p/glance-queens-ptg-planning
[3] http://lists.openstack.org/pipermail/openstack-dev/2017-June/118228.html
[4] http://lists.openstack.org/pipermail/openstack-dev/2017-July/119442.html

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] OpenStack Developer Mailing List Digest July 22-28

[Mike Perez]

HTML version: 
https://www.openstack.org/blog/2017/08/openstack-developer-mailing-list-digest-20170728/

Summaries
=
* Nova placement/resource providers update 30 [1]
* TC Report 30 [2]
* POST /api-wg/news [3]
* Release countdown for week R-4, July 28 - Aug 4 [4]
* Technical Committee Status update, July 28 [5]

Project Team Gathering Planning
===
* Nova [6]
* Keystone [7]
* Sahara [8]
* Cinder [9]
* Oslo [10]
* Neutron [11]
* Documentation [12]

Oslo DB Network Database Base namespace throughout OpenStack Projects
=
* Mike Bayer has been working with Octave Oregon on adding the network database
  storage engine for mysql to oslo.db module so other projects can take
  advantage of it. Mike Bayer notes:
  - The code review [13]
  - Support in Nova [14]
  - Support in Neutron [15]
* New data types that map to types from the NDB namespace.
  - oslo_db.sqlalchemy.types.SmallString
  - oslo_db.sqlalchemy.types.String
* Full thread: [16]

1. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120290.html
2. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120112.html
3. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120245.html
4. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120304.html
5. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120280.html
6. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120020.html
7. http://lists.openstack.org/pipermail/openstack-dev/2017-July/119299.html
8. http://lists.openstack.org/pipermail/openstack-dev/2017-July/119352.html
9. http://lists.openstack.org/pipermail/openstack-dev/2017-July/119358.html
10. http://lists.openstack.org/pipermail/openstack-dev/2017-July/119462.html
11. http://lists.openstack.org/pipermail/openstack-dev/2017-July/120270.html
12. http://lists.openstack.org/pipermail/openstack-dev/2017-July/119990.html
13. https://review.openstack.org/#/c/427970/
14. https://review.openstack.org/#/c/446643
15. https://review.openstack.org/#/c/446136/
16. 
http://lists.openstack.org/pipermail/openstack-dev/2017-July/thread.html#120037


signature.asc
Description: PGP signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [requirements][release][oslo] FFE for oslo.policy

[Tony Breeds]

On Tue, Aug 01, 2017 at 06:32:36PM -0500, Matthew Thode wrote:
> +1 here as well, my only concern is that this will need to be consumed
> by so many projects.  If the community consensus on this is to go
> foraward with it then it's OK then.
> 
> http://codesearch.openstack.org/?q=oslo.policy=nope=requirements.txt=

So yeah this is used in a bunch of places.

Package  : oslo-policy [oslo-policy>=1.23.0] (used by 38 projects)
Also affects : 38 projects

They're all service-like projects.

We're currently sitting on 1.25.0 in u-c so the actual bump from 1.25.0
-> 1.25.1 is pretty low impact and as other have pointed out only alters
the way docs are built.

I'm +2 on the release and the requirements FFE for a constraints bump.

Tony.


signature.asc
Description: PGP signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][requirements][barbican][octavia][LBaaS][heat] FFE Request for python-barbicanclient library

[Tony Breeds]

On Tue, Aug 01, 2017 at 04:58:22PM -0400, Doug Hellmann wrote:
> Excerpts from Dave McCowan (dmccowan)'s message of 2017-08-01 20:48:12 +:
> > This note is to request a Feature Freeze Exemption (FFE) for the 
> > python-barbicanclient library in Pike.
> > 
> > Python-barbicanclient 4.5.0 was intended to be the Pike release.  However, 
> > after it was released, testing with the Heat and Octavia projects found 
> > that it contained an incompatible change resulting in Tracebacks for those 
> > projects.
> > 
> > The issue was reported in this bug.
> > https://bugs.launchpad.net/python-barbicanclient/+bug/1706841
> > 
> > A first, and partial, attempt to fix this was merged in this patch.
> > https://review.openstack.org/487721
> > This patch is included in release 4.5.1.
> > 
> > A second, and successful, fix was merged in this patch.
> > https://review.openstack.org/489518
> > This patch is included in release 4.5.2.
> > 
> > The Barbican team requests a feature freeze exemption for 
> > python-barbicanclient release 4.5.2 to be the release for Pike.  Releases 
> > 4.5.0 and 4.5.1 should be blocked in global requirements.
> > 
> > Thanks,
> > Dave
> > IRC:dave-mccowan
> 
> This sounds reasonable. It's a critical problem but only affects a small
> number of projects, so the risk is fairly small.

The current users of python-barbicanclient are:
Package  : python-barbicanclient [python-barbicanclient!=4.5.0,>=4.0.0] 
(used by 16 projects)
Also affects : 16 projects
openstack/castellan   []
openstack/cinder  [tc:approved-release]
openstack/compute-hyperv  []
openstack/heat[tc:approved-release]
openstack/kolla   []
openstack/magnum  []
openstack/mistral []
openstack/neutron-lbaas   []
openstack/neutron-lbaas-dashboard []
openstack/nova[tc:approved-release]
openstack/octavia []
openstack/octavia-dashboard   []
openstack/openstackclient []
openstack/python-openstackclient  []
openstack/solum   []
openstack/tacker  []

But IIUC it's really only octavia and heat that don't work with 4.5.x

Looking at the change logs:

[tony@thor python-barbicanclient]$ git log --decorate --oneline
--no-merges 4.4.0^..HEAD
714fce2 (HEAD -> master, origin/master, origin/HEAD, gerrit/master) Support 
import modules from barbicanclient.client module
49505b9 (tag: 4.5.1) Workaround for importing objects from old path
ea509a5 Update api references according to refactor result
e0e3703 Add secret_type filter to CLI
f844a0e Updated from global requirements
a95c1a1 Update the documentation link for doc migration
51d8bfa Updated from global requirements
c497189 fix default version
3c7d909 Updated from global requirements
e599dfd Update doc references
2479529 import content from cli-reference in openstack-manuals
9af9169 rearrange the existing docs into the new standard layout
4eed5c8 Switch from oslosphinx to openstackdocstheme
439ee25 (tag: 4.4.0) Updated from global requirements
97906c8 Refactor barbicanclient

So all the changes look okay to me, assuming the 4.5.1 and 4.5.2 patches
work.

> I assume you've done enough testing to feel comfortable that 4.5.2 will
> work better than 4.5.0 and 4.5.1?

Once we have the release I'll create no-op changes in all the affected
projects that depend on the u-c bump.

What concerns me a little is that we can't test this without a release
and once we do the release we're committed to some form of g-r
alteration with the impacts associated with it.

Would it be terrible to branch stable/pike @ 4.4.0 and leav all the
4.5.x stuff for queens?




> 
> Doug
> 
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
Yours Tony.


signature.asc
Description: PGP signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tripleo][tripleo-heat-template] how to get interface name from network name in service profile

[Zenghui Shi]

On Wed, 2 Aug 2017 at 02:34 Ben Nemec  wrote:

>
>
> On 07/25/2017 09:53 PM, Zenghui Shi wrote:
> > Hi,
> >
> > Could anyone shed some light on how to get the physical interface name
> > (e.g eth0) from network name (e.g PublicNetwork, ExternalNetwork) in
> > tripleo-heat-template service profile ?
> >
> > for example:
> >
> > I want to add a service profile under puppet/services/time/ptp.pp where
> > it uses 'PtpInterface' as a parameter to get physical interface name
> > (please refer to below piece of code), but I'd like to expose a more
> > user friendly parameter like NetworkName(e.g. provision network,
> > external network etc) instead of 'PtpInterface' and retrieve the actual
> > physical interface name from the NetworkName where the physical
> > interface is connected to, is there any possible way to do this ?
>
> I don't think there is.  In many cases the templates don't even know the
> name of the physical device on which the network will be running.  A
> simple example would be when a user uses the nicX abstraction to specify
> interfaces in their net-iso templates.  That doesn't get mapped to an
> actual interface name until os-net-config runs, and the results of that
> run are not available to the templates.
>

Thanks Ben!

I'm also thinking if it makes sense to have a way in template or target
nodes to re-use the results of os-net-config for services which are bonded
to certain interfaces, or re-implement the os-net-config logic in template
to get the physical interface name. The latter one will be a repetitive
work of os-net-config.

Cheers!
Zenghui

>
> >
> > 
> > parameters:
> > [...]
> >PtpInterface:  #  ---> change this parameter to PtpNetwork
> >  default: eth0
> >  description: PTP interfaces name.
> >  type: string
> >
> > resources:
> >RoleParametersValue
> >  type: OS::Heat::Value
> >  properties:
> >type: json
> >value: # ---> add logic to get real interface name
> > from PtpNetwork
> >  map_replace:
> >- map_replace:
> >  - tripleo::profile::base::time::ptp::ptp4l_interface:
> > PtpInterface
> >  - values: {get_param: [RoleParameters]}
> >- values:
> >PtpInterface: {get_param: PtpInterface}
> >
> > outputs:
> >role_data:
> >  description: Role ptp using commposable services.
> >  value:
> >service_name: ptp
> >config_settings:
> >  map_merge:
> >- get_attr: [RoleParametersValue, value]
> > [...]
> > 
> >
> > Thanks!
> > zenghui
> >
> >
> >
> __
> > OpenStack Development Mailing List (not for usage questions)
> > Unsubscribe:
> openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> >
>
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][requirements][barbican][octavia][LBaaS][heat] FFE Request for python-barbicanclient library

[Matthew Thode]

I agree, this does seem like a fairly reasonable, limited impact change,
it looks like we'd be adding the block to 4.5.1, when 4.5.2 hits UC.txt
doesn't mater as much (unless it has something that NEEDS to be in pike,
in which case we should probably be updating the minimum in GR.txt as well).
I'm fine with this if it's just the block and possibly the UC update as
well.
On 17-08-01 16:58:22, Doug Hellmann wrote:
> Excerpts from Dave McCowan (dmccowan)'s message of 2017-08-01 20:48:12 +:
> > This note is to request a Feature Freeze Exemption (FFE) for the 
> > python-barbicanclient library in Pike.
> > 
> > Python-barbicanclient 4.5.0 was intended to be the Pike release.  However, 
> > after it was released, testing with the Heat and Octavia projects found 
> > that it contained an incompatible change resulting in Tracebacks for those 
> > projects.
> > 
> > The issue was reported in this bug.
> > https://bugs.launchpad.net/python-barbicanclient/+bug/1706841
> > 
> > A first, and partial, attempt to fix this was merged in this patch.
> > https://review.openstack.org/487721
> > This patch is included in release 4.5.1.
> > 
> > A second, and successful, fix was merged in this patch.
> > https://review.openstack.org/489518
> > This patch is included in release 4.5.2.
> > 
> > The Barbican team requests a feature freeze exemption for 
> > python-barbicanclient release 4.5.2 to be the release for Pike.  Releases 
> > 4.5.0 and 4.5.1 should be blocked in global requirements.
> > 
> > Thanks,
> > Dave
> > IRC:dave-mccowan
> 
> This sounds reasonable. It's a critical problem but only affects a small
> number of projects, so the risk is fairly small.
> 
> I assume you've done enough testing to feel comfortable that 4.5.2 will
> work better than 4.5.0 and 4.5.1?
> 
> Doug
> 
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

-- 
Matthew Thode (prometheanfire)


signature.asc
Description: PGP signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [requirements][release][oslo] FFE for oslo.policy

[Matthew Thode]

+1 here as well, my only concern is that this will need to be consumed
by so many projects.  If the community consensus on this is to go
foraward with it then it's OK then.

http://codesearch.openstack.org/?q=oslo.policy=nope=requirements.txt=

On 17-08-01 16:58:53, Doug Hellmann wrote:
> Excerpts from Davanum Srinivas (dims)'s message of 2017-08-01 16:38:13 -0400:
> > +1, i'd support this as the 2 commits in there are not in the
> > normal/runtime flow for oslo.policy and just touch the doc bits.
> 
> +1 as well
> 
> > 
> > Thanks,
> > Dims
> > 
> > On Tue, Aug 1, 2017 at 4:36 PM, Lance Bragstad  wrote:
> > > I was cleaning up a few documentation things for keystone and noticed an
> > > issue with how the configuration reference was rendering. It turns out
> > > the oslo.policy library needed a few tweaks to the show-policy directive
> > > along with some changes to keystone that allowed us to properly render
> > > all default policies. I documented these in a bug report tagging both
> > > projects [0].
> > >
> > > Two fixes were made to the oslo.policy library (thanks, Doug!) that will
> > > allow projects to render their entire policy document using the
> > > show-policy directive. Both fixes have merged in oslo.policy master and
> > > have been backported to stable/pike. I also have a release proposed to
> > > cut a new version of oslo.policy for us to use for pike [1].
> > >
> > > Opening this up for discussion to see if we can grant an FFE so that we
> > > can use the proper version of oslo.policy. More context in IRC as well 
> > > [2].
> > >
> > > Let me know if you have any questions. Thanks!
> > >
> > > Lance
> > >
> > > [0] https://bugs.launchpad.net/keystone/+bug/1707246
> > > [1] https://review.openstack.org/#/c/489599/
> > > [2]
> > > http://eavesdrop.openstack.org/irclogs/%23openstack-release/%23openstack-release.2017-08-01.log.html#t2017-08-01T18:14:57
> > >
> > >
> > >
> > > __
> > > OpenStack Development Mailing List (not for usage questions)
> > > Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> > > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> > >
> > 
> 
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

-- 
Matthew Thode (prometheanfire)


signature.asc
Description: PGP signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [Zun] Queens PTL candidacy

[Hongbin Lu]

Hi all,

I nominated myself to be a candidate of Zun PTL for Queens. As the founder of 
this
project, it is my honor to work with all of you to build an innovative
OpenStack container service.

OpenStack provides a full-featured data center management solution which
includes multi-tenant security, networking, storage, management and monitoring,
and more. All theses services are needed regardless of whether containers,
virtual machines, or baremetal servers are being used [1]. In this context,
Zun's role is to bring prevailing container technologies to OpenStack and
enable the reuse of existing infrastructure services for containers.
Eventually, different container technologies should be easily accessible by
cloud consumers, which is a goal Zun is contributing to.

Since April 2016, in which the project was founded, the Zun team has been
working hard to achieve its mission. We managed to delivere most of the
important features includes:
* A full-featured container API.
* A docker driver that serves as reference implementation.
* Neutron integration via Kuryr-libnetwork.
* Two image drivers: Docker Registry (i.e. Docker Hub) and Glance.
* Multi-tenancy: Containers are isolated by Keystone projects.
* Horizon integration.
* OpenStack Client integration.
* Heat integration.

By looking ahead to Queens, I would suggest the Zun team to focus on the
followings:
* NFV: Containerized NFV workload is emerging and we wants to adapt this trend.
* Containers-on-VMs: Provide an option to auto-provision VMs for containers.
  This is for use cases that containers need to be strongly isolated by VMs.
* Cinder integration: Leverage Cinder for providing data volume for containers.
* Alternative container runtime: Introduce a second container runtime as a
  Docker alternative.
* Capsule API: Pack multiple containers into a managed unit.

Beyond Pike, I would estimate Zun to move toward the following directions:
* Kubernetes: Kubernetes is probably the most popluar containers orchestration
  tool, but there are still some gaps that prevent Kubernetes to work well with
  OpenStack. I think Zun might be able to help to reduce the gaps. We could
  explore integration options for Kubernetes to make OpenStack more appealing
  for cloud-native users.
* Placement API: Nova team is working to split its scheduler out and Zun would
  like to leverage this new service if appropriate.

[1] https://www.openstack.org/assets/pdf-downloads/Containers-and-OpenStack.pdf

Best regards,
Hongbin
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [keystone] office hours report 2017-08-01

[Lance Bragstad]

Hey all,

Here is a condensed report of what was accomplished during office hours
today. Most activity focused on reviewing fixes in flight. Full log can
be found in IRC [0].

Bug #1635389 in OpenStack Identity (keystone):
"keystone.contrib.ec2.controllers.Ec2Controller is untested"
https://bugs.launchpad.net/keystone/+bug/1635389
participants: cmurphy, lbragstad, jose castro leon
Reviewed and approved fix

Bug #169 in OpenStack Identity (keystone): "ec2tokens errors in v2
api after Ocata upgrade"
https://bugs.launchpad.net/keystone/+bug/169
participants: cmurphy, lbragstad, jose castro leon
Reviewed and approved fix

Bug #1694460 in OpenStack Identity (keystone): "Keystone docs need to be
migrated from the OpenStack-manuals"
https://bugs.launchpad.net/keystone/+bug/1694460
participants: lbragstad, cmurphy, gagehugo
Proposed and reviewed remaining patches to complete documentation migration

Bug #1689468 in OpenStack Identity (keystone): "odd keystone behavior
when X-Auth-Token ends with carriage return"
https://bugs.launchpad.net/keystone/+bug/1689468
participants: cmurphy, samueldmq
Merged fix

Bug #1708005 in keystoneauth: "6 out 10
keystone.tests.unit.test_cert_setup.* unit test cases failed in
stable/newton branch"
https://bugs.launchpad.net/keystoneauth/+bug/1708005
participants: henglinyang
Reported and opened bug

Bug #1701324 in OpenStack Identity (keystone): "Removing duplicated
items doesn't work in case of federations"
https://bugs.launchpad.net/keystone/+bug/1701324
participants: lbragstad, dstepanenko
Confirmed and submitted patch to expose the bug

Bug #1707993 in keystoneauth: "EndpointData.url should regurgitate my
endpoint_override"
https://bugs.launchpad.net/keystoneauth/+bug/1707993
participants: efried
Opened and triaged bug

[0]
http://eavesdrop.openstack.org/meetings/keystone_office_hours/2017/keystone_office_hours.2017-08-01-18.58.log.html


signature.asc
Description: OpenPGP digital signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tripleo] not running PTL during Queens

[Keith Schincke]

You've been a great leader and have done a good job herding all of us cats
into one direction.

It will be great to see where this project leads us to in the future.

Keith



On Sun, Jul 30, 2017 at 23:53 Emilien Macchi  wrote:

> Hi,
>
> After 3 cycles of Puppet OpenStack PTL and 2 cycles of TripleO PTL, I
> decided to do a little break on this role and give the opportunity to
> let other people taking it.
> A few months ago, I wrote a blog post about my personal thoughts on
> what leadership means to me and what I've learnt by being PTL:
> http://my1.fr/blog/my-journey-as-an-openstack-ptl/
>
> My hope is to see new leaders in our project and maintain the
> OpenStack values as strong as we've tried to push over the last years.
> I'll still be around but hopefully stepping down will allow me to
> focus on some other things (still TripleO of course), including my
> position at the Technical Committee.
>
> Thanks all for your trust, your patience, your tolerance and more than
> anything else: your hard work.
> I'm looking forward to continuing this adventure :-)
> --
> Emilien Macchi
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
-- 

Keith Schincke
Senior Software Engineer (RHCA)
Systems Engineering
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tripleo] not running PTL during Queens

[Steven Dake]

Emilien,

While I haven't worked closely on the implementation of TripleO, it has
been a pleasure working with you as the PTL of TripleO.  Your a great
example of how to perform the service of the PTL and really demonstrate how
cross-project collaboration can work effectively to achieve common goals.

Regards
-steve


On Sun, Jul 30, 2017 at 9:52 PM, Emilien Macchi  wrote:

> Hi,
>
> After 3 cycles of Puppet OpenStack PTL and 2 cycles of TripleO PTL, I
> decided to do a little break on this role and give the opportunity to
> let other people taking it.
> A few months ago, I wrote a blog post about my personal thoughts on
> what leadership means to me and what I've learnt by being PTL:
> http://my1.fr/blog/my-journey-as-an-openstack-ptl/
>
> My hope is to see new leaders in our project and maintain the
> OpenStack values as strong as we've tried to push over the last years.
> I'll still be around but hopefully stepping down will allow me to
> focus on some other things (still TripleO of course), including my
> position at the Technical Committee.
>
> Thanks all for your trust, your patience, your tolerance and more than
> anything else: your hard work.
> I'm looking forward to continuing this adventure :-)
> --
> Emilien Macchi
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][ptl] new "linter" rules for openstack/releases repository

[Doug Hellmann]

Excerpts from Alex Schultz's message of 2017-08-01 13:56:53 -0600:
> On Tue, Aug 1, 2017 at 1:45 PM, Doug Hellmann  wrote:
> > Excerpts from Alex Schultz's message of 2017-08-01 12:55:15 -0600:
> >> On Tue, Aug 1, 2017 at 12:07 PM, Doug Hellmann  
> >> wrote:
> >> > The release team is working on a series of patches to improve the
> >> > data validation within openstack/releases. Part of that work is to
> >> > apply consistent formatting rules for all of the YAML files, so it
> >> > is easier to build tools that automatically update those files. To
> >> > enable those consistent rules, we have had to "normalize" the use
> >> > of whitespace in a bunch of the existing files.
> >> >
> >> > These changes mean that if you have built your own automation for
> >> > adding new releases, you might have to make adjustments. If you do,
> >> > please take the time to look at the tools within the repo (in
> >> > particular the new-release, interactive-release, and edit-deliverable
> >> > commands) to see if they meet your needs, or can be extended to do
> >> > so. There's not much point in all of us building our own tools. :-)
> >> >
> >> > If you're curious about the actual changes, you can have a look at the
> >> > patch series for "queens-indentation" at
> >> > https://review.openstack.org/#/q/project:openstack/releases+topic:queens-indentation
> >> >
> >>
> >> Was the linting rules applied via templates or is this something that
> >> can be done programatically via pyyaml/ruamel.yaml or some other
> >> library?  I know for the puppet release files I was using ruamel.yaml
> >
> > We're using yamllint and jsonschema. The whitepsace rules are enforced
> > by yamllint, and now also by the yamlutils module in the releases repo
> > which configures PyYAML to emit YAML that matches the linter rules.
> >
> 
> Ok I'll take a look. The issues I ran into with PyYAML was the
> ordering would end up differently than what was previously being
> generated.  I'm really not too keen on these types of changes as they
> seem to be making things harder than they need to be.  In the future
> can we ask for commentary on this prior to making these changes or
> only doing it at the beginning of the cycle? Now that we're working
> towards the RCs, the last thing I want to be doing right now is
> messing with yaml formatting while trying to get the final release
> stuff together.

The yamlutils module in the repo ties in an ordereddict thing so
the output is deterministic. We also have a format-yaml command
that reads the input and writes it back out using the new rules,
which makes it easy to normalize the file in one patch and then add
info in a follow-up.

All of this was intended to make it easier to have scripts that
apply bulk updates, which the release team uses at a few points
throughout the cycle.  I would be happy to work with you to bring
whatever tools you're building into the releases repo to generalize
them.

Doug

> 
> Thanks,
> -Alex
> 
> > Doug
> >
> >> to match up with what was being generated but this new formatting
> >> seems to diverge from what it generates.   The last time I went
> >> looking the tooling provided seemed to be using templates which didn't
> >> match anything if you were trying to manage the files via normal yaml
> >> objects which was kinda the problem.
> >>
> >> Thanks,
> >> -Alex
> >>
> >> > Doug
> >> >
> >> > __
> >> > OpenStack Development Mailing List (not for usage questions)
> >> > Unsubscribe: 
> >> > openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> >> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> >>
> >
> > __
> > OpenStack Development Mailing List (not for usage questions)
> > Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> 

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [requirements][release][oslo] FFE for oslo.policy

[Doug Hellmann]

Excerpts from Davanum Srinivas (dims)'s message of 2017-08-01 16:38:13 -0400:
> +1, i'd support this as the 2 commits in there are not in the
> normal/runtime flow for oslo.policy and just touch the doc bits.

+1 as well

> 
> Thanks,
> Dims
> 
> On Tue, Aug 1, 2017 at 4:36 PM, Lance Bragstad  wrote:
> > I was cleaning up a few documentation things for keystone and noticed an
> > issue with how the configuration reference was rendering. It turns out
> > the oslo.policy library needed a few tweaks to the show-policy directive
> > along with some changes to keystone that allowed us to properly render
> > all default policies. I documented these in a bug report tagging both
> > projects [0].
> >
> > Two fixes were made to the oslo.policy library (thanks, Doug!) that will
> > allow projects to render their entire policy document using the
> > show-policy directive. Both fixes have merged in oslo.policy master and
> > have been backported to stable/pike. I also have a release proposed to
> > cut a new version of oslo.policy for us to use for pike [1].
> >
> > Opening this up for discussion to see if we can grant an FFE so that we
> > can use the proper version of oslo.policy. More context in IRC as well [2].
> >
> > Let me know if you have any questions. Thanks!
> >
> > Lance
> >
> > [0] https://bugs.launchpad.net/keystone/+bug/1707246
> > [1] https://review.openstack.org/#/c/489599/
> > [2]
> > http://eavesdrop.openstack.org/irclogs/%23openstack-release/%23openstack-release.2017-08-01.log.html#t2017-08-01T18:14:57
> >
> >
> >
> > __
> > OpenStack Development Mailing List (not for usage questions)
> > Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> >
> 

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][requirements][barbican][octavia][LBaaS][heat] FFE Request for python-barbicanclient library

[Doug Hellmann]

Excerpts from Dave McCowan (dmccowan)'s message of 2017-08-01 20:48:12 +:
> This note is to request a Feature Freeze Exemption (FFE) for the 
> python-barbicanclient library in Pike.
> 
> Python-barbicanclient 4.5.0 was intended to be the Pike release.  However, 
> after it was released, testing with the Heat and Octavia projects found that 
> it contained an incompatible change resulting in Tracebacks for those 
> projects.
> 
> The issue was reported in this bug.
> https://bugs.launchpad.net/python-barbicanclient/+bug/1706841
> 
> A first, and partial, attempt to fix this was merged in this patch.
> https://review.openstack.org/487721
> This patch is included in release 4.5.1.
> 
> A second, and successful, fix was merged in this patch.
> https://review.openstack.org/489518
> This patch is included in release 4.5.2.
> 
> The Barbican team requests a feature freeze exemption for 
> python-barbicanclient release 4.5.2 to be the release for Pike.  Releases 
> 4.5.0 and 4.5.1 should be blocked in global requirements.
> 
> Thanks,
> Dave
> IRC:dave-mccowan

This sounds reasonable. It's a critical problem but only affects a small
number of projects, so the risk is fairly small.

I assume you've done enough testing to feel comfortable that 4.5.2 will
work better than 4.5.0 and 4.5.1?

Doug

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][requirements][barbican][octavia][LBaaS][heat] FFE Request for python-barbicanclient library

[Davanum Srinivas]

4.5.0 is already blocked. My +1 to block 4.5.1 as well.
https://github.com/openstack/requirements/blob/master/global-requirements.txt

The release team was waiting for a good barbicanclient release before
branching as mentioned by Doug:
http://lists.openstack.org/pipermail/openstack-dev/2017-July/120314.html

So +1 from me to release 4.5.2 and land g-r/u-c updates.

Thanks,
Dims

On Tue, Aug 1, 2017 at 4:48 PM, Dave McCowan (dmccowan)
 wrote:
> This note is to request a Feature Freeze Exemption (FFE) for the
> python-barbicanclient library in Pike.
>
> Python-barbicanclient 4.5.0 was intended to be the Pike release.  However,
> after it was released, testing with the Heat and Octavia projects found that
> it contained an incompatible change resulting in Tracebacks for those
> projects.
>
> The issue was reported in this bug.
> https://bugs.launchpad.net/python-barbicanclient/+bug/1706841
>
> A first, and partial, attempt to fix this was merged in this patch.
> https://review.openstack.org/487721
> This patch is included in release 4.5.1.
>
> A second, and successful, fix was merged in this patch.
> https://review.openstack.org/489518
> This patch is included in release 4.5.2.
>
> The Barbican team requests a feature freeze exemption for
> python-barbicanclient release 4.5.2 to be the release for Pike.  Releases
> 4.5.0 and 4.5.1 should be blocked in global requirements.
>
> Thanks,
> Dave
> IRC:dave-mccowan
>
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>



-- 
Davanum Srinivas :: https://twitter.com/dims

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [release][requirements][barbican][octavia][LBaaS][heat] FFE Request for python-barbicanclient library

[Dave McCowan (dmccowan)]

This note is to request a Feature Freeze Exemption (FFE) for the 
python-barbicanclient library in Pike.

Python-barbicanclient 4.5.0 was intended to be the Pike release.  However, 
after it was released, testing with the Heat and Octavia projects found that it 
contained an incompatible change resulting in Tracebacks for those projects.

The issue was reported in this bug.
https://bugs.launchpad.net/python-barbicanclient/+bug/1706841

A first, and partial, attempt to fix this was merged in this patch.
https://review.openstack.org/487721
This patch is included in release 4.5.1.

A second, and successful, fix was merged in this patch.
https://review.openstack.org/489518
This patch is included in release 4.5.2.

The Barbican team requests a feature freeze exemption for python-barbicanclient 
release 4.5.2 to be the release for Pike.  Releases 4.5.0 and 4.5.1 should be 
blocked in global requirements.

Thanks,
Dave
IRC:dave-mccowan

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [requirements][release][oslo] FFE for oslo.policy

[Sean McGinnis]

> 
> Two fixes were made to the oslo.policy library (thanks, Doug!) that will
> allow projects to render their entire policy document using the
> show-policy directive. Both fixes have merged in oslo.policy master and
> have been backported to stable/pike. I also have a release proposed to
> cut a new version of oslo.policy for us to use for pike [1].
> 
> Opening this up for discussion to see if we can grant an FFE so that we
> can use the proper version of oslo.policy. More context in IRC as well [2].
> 

Those two commits [0] are very isolated, and should in no way impact
runtime. To me this looks like a low risk and a good gain to be able
to provide good documentation on policies.

[0] https://github.com/openstack/oslo.policy/compare/1.25.0...stable/pike

Sean

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [requirements][release][oslo] FFE for oslo.policy

[Davanum Srinivas]

+1, i'd support this as the 2 commits in there are not in the
normal/runtime flow for oslo.policy and just touch the doc bits.

Thanks,
Dims

On Tue, Aug 1, 2017 at 4:36 PM, Lance Bragstad  wrote:
> I was cleaning up a few documentation things for keystone and noticed an
> issue with how the configuration reference was rendering. It turns out
> the oslo.policy library needed a few tweaks to the show-policy directive
> along with some changes to keystone that allowed us to properly render
> all default policies. I documented these in a bug report tagging both
> projects [0].
>
> Two fixes were made to the oslo.policy library (thanks, Doug!) that will
> allow projects to render their entire policy document using the
> show-policy directive. Both fixes have merged in oslo.policy master and
> have been backported to stable/pike. I also have a release proposed to
> cut a new version of oslo.policy for us to use for pike [1].
>
> Opening this up for discussion to see if we can grant an FFE so that we
> can use the proper version of oslo.policy. More context in IRC as well [2].
>
> Let me know if you have any questions. Thanks!
>
> Lance
>
> [0] https://bugs.launchpad.net/keystone/+bug/1707246
> [1] https://review.openstack.org/#/c/489599/
> [2]
> http://eavesdrop.openstack.org/irclogs/%23openstack-release/%23openstack-release.2017-08-01.log.html#t2017-08-01T18:14:57
>
>
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>



-- 
Davanum Srinivas :: https://twitter.com/dims

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [requirements][release][oslo] FFE for oslo.policy

[Lance Bragstad]

I was cleaning up a few documentation things for keystone and noticed an
issue with how the configuration reference was rendering. It turns out
the oslo.policy library needed a few tweaks to the show-policy directive
along with some changes to keystone that allowed us to properly render
all default policies. I documented these in a bug report tagging both
projects [0].

Two fixes were made to the oslo.policy library (thanks, Doug!) that will
allow projects to render their entire policy document using the
show-policy directive. Both fixes have merged in oslo.policy master and
have been backported to stable/pike. I also have a release proposed to
cut a new version of oslo.policy for us to use for pike [1].

Opening this up for discussion to see if we can grant an FFE so that we
can use the proper version of oslo.policy. More context in IRC as well [2].

Let me know if you have any questions. Thanks!

Lance

[0] https://bugs.launchpad.net/keystone/+bug/1707246
[1] https://review.openstack.org/#/c/489599/
[2]
http://eavesdrop.openstack.org/irclogs/%23openstack-release/%23openstack-release.2017-08-01.log.html#t2017-08-01T18:14:57




signature.asc
Description: OpenPGP digital signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [TripleO] Non-voting job for testing container builds against tripleo-common

[Emilien Macchi]

On Tue, Aug 1, 2017 at 9:56 AM, David Moreau Simard  wrote:
> Hi,
>
> We temporarily stood up a third party job from review.rdoproject.org
> for the tripleo-common project to test that container builds are not
> broken as a result of a patch.
>
> For example, recently we took out EPEL with overrides and all
> containers built fine.
> After that, we introduced barbican which relied on EPEL and once more
> broke container builds [1].
>
> This new job first builds a package for tripleo-common (DLRN-rpmbuild)
> and then builds containers (rdo-kolla-build-integration) with that new
> tripleo-common package using the overcloud_containers and overrides
> files from it.
> Since the job is third party, it is non-voting but I please ask core
> reviewers on tripleo-common to pay attention to the job results so
> that we don't break containers.
>
> You can see an example of the job running here [2].
>
> If you have any questions, please reach out to me.

nothing to say than "really cool thanks" :-)

> Thanks,
>
> [1]: 
> https://trello.com/c/KIO2UiWo/227-kolla-error-creating-barbican-api-container-image-after-disabling-epel
> [2]: https://review.openstack.org/#/c/489224/
>
> David Moreau Simard
> Senior Software Engineer | Openstack RDO
>
> dmsimard = [irc, github, twitter]
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev



-- 
Emilien Macchi

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][ptl] new "linter" rules for openstack/releases repository

[Alex Schultz]

On Tue, Aug 1, 2017 at 1:45 PM, Doug Hellmann  wrote:
> Excerpts from Alex Schultz's message of 2017-08-01 12:55:15 -0600:
>> On Tue, Aug 1, 2017 at 12:07 PM, Doug Hellmann  wrote:
>> > The release team is working on a series of patches to improve the
>> > data validation within openstack/releases. Part of that work is to
>> > apply consistent formatting rules for all of the YAML files, so it
>> > is easier to build tools that automatically update those files. To
>> > enable those consistent rules, we have had to "normalize" the use
>> > of whitespace in a bunch of the existing files.
>> >
>> > These changes mean that if you have built your own automation for
>> > adding new releases, you might have to make adjustments. If you do,
>> > please take the time to look at the tools within the repo (in
>> > particular the new-release, interactive-release, and edit-deliverable
>> > commands) to see if they meet your needs, or can be extended to do
>> > so. There's not much point in all of us building our own tools. :-)
>> >
>> > If you're curious about the actual changes, you can have a look at the
>> > patch series for "queens-indentation" at
>> > https://review.openstack.org/#/q/project:openstack/releases+topic:queens-indentation
>> >
>>
>> Was the linting rules applied via templates or is this something that
>> can be done programatically via pyyaml/ruamel.yaml or some other
>> library?  I know for the puppet release files I was using ruamel.yaml
>
> We're using yamllint and jsonschema. The whitepsace rules are enforced
> by yamllint, and now also by the yamlutils module in the releases repo
> which configures PyYAML to emit YAML that matches the linter rules.
>

Ok I'll take a look. The issues I ran into with PyYAML was the
ordering would end up differently than what was previously being
generated.  I'm really not too keen on these types of changes as they
seem to be making things harder than they need to be.  In the future
can we ask for commentary on this prior to making these changes or
only doing it at the beginning of the cycle? Now that we're working
towards the RCs, the last thing I want to be doing right now is
messing with yaml formatting while trying to get the final release
stuff together.

Thanks,
-Alex

> Doug
>
>> to match up with what was being generated but this new formatting
>> seems to diverge from what it generates.   The last time I went
>> looking the tooling provided seemed to be using templates which didn't
>> match anything if you were trying to manage the files via normal yaml
>> objects which was kinda the problem.
>>
>> Thanks,
>> -Alex
>>
>> > Doug
>> >
>> > __
>> > OpenStack Development Mailing List (not for usage questions)
>> > Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
>> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>>
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][ptl] new "linter" rules for openstack/releases repository

[Doug Hellmann]

Excerpts from Alex Schultz's message of 2017-08-01 12:55:15 -0600:
> On Tue, Aug 1, 2017 at 12:07 PM, Doug Hellmann  wrote:
> > The release team is working on a series of patches to improve the
> > data validation within openstack/releases. Part of that work is to
> > apply consistent formatting rules for all of the YAML files, so it
> > is easier to build tools that automatically update those files. To
> > enable those consistent rules, we have had to "normalize" the use
> > of whitespace in a bunch of the existing files.
> >
> > These changes mean that if you have built your own automation for
> > adding new releases, you might have to make adjustments. If you do,
> > please take the time to look at the tools within the repo (in
> > particular the new-release, interactive-release, and edit-deliverable
> > commands) to see if they meet your needs, or can be extended to do
> > so. There's not much point in all of us building our own tools. :-)
> >
> > If you're curious about the actual changes, you can have a look at the
> > patch series for "queens-indentation" at
> > https://review.openstack.org/#/q/project:openstack/releases+topic:queens-indentation
> >
> 
> Was the linting rules applied via templates or is this something that
> can be done programatically via pyyaml/ruamel.yaml or some other
> library?  I know for the puppet release files I was using ruamel.yaml

We're using yamllint and jsonschema. The whitepsace rules are enforced
by yamllint, and now also by the yamlutils module in the releases repo
which configures PyYAML to emit YAML that matches the linter rules.

Doug

> to match up with what was being generated but this new formatting
> seems to diverge from what it generates.   The last time I went
> looking the tooling provided seemed to be using templates which didn't
> match anything if you were trying to manage the files via normal yaml
> objects which was kinda the problem.
> 
> Thanks,
> -Alex
> 
> > Doug
> >
> > __
> > OpenStack Development Mailing List (not for usage questions)
> > Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
> 

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [neutron] FFE for dns_domain for ports extension

[Miguel Lavalle]

Hi PTL/all

I want to request an exception to include the dns_domain for ports
extension in the Pike release.

The extension is implemented by 3 patchsets, out of which [1] and [2] have
already merged. The third patchset [3] is ready for reviews. The RFE can be
found in [4].

Best regards
Miguel


[1] https://review.openstack.org/#/c/457101/
[2] https://review.openstack.org/#/c/457035/
[3] https://review.openstack.org/#/c/468697/
[4] https://bugs.launchpad.net/neutron/+bug/1650678
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [all][docs] recruiting for help with documentation tools

[Doug Hellmann]

With the changes we've made to docs processes upstream, every team
is going to need to build up their knowledge of how the new
documentation tools and jobs work. The docs team will still help,
but things will obviously go more smoothly if folks know how the
tools work, now that the bulk of the content is in-tree with the
code.

At the same time, the docs team could use help with developing and
maintaining those tools. We have a couple people working on them
now (me, Andreas, and Anne), but none of us is doing it full time.
I need to transition off of this work, so over the course of Queens
I will be trying to build up the skills of the existing team so
they do not need to rely on me so much. Also, Andreas and Anne have
said that they cannot commit to driving any work.

Although the documentation team has some skills in this area, they
could use help, so I would like to find a few people to join the
team specifically to work on the tooling (although if you wanted
to write documentation, too, no one will object).

Some of you have been helping informally (thank you!), but the
community shift is big enough that we need to account for the new
need a bit more formally. I think if we could find several people
who could give a small percentage of their time (10%?), we would
be well covered. There will not be work every week, but when there
is something to do it's likely to take a small extended period (1-2
days) to add a feature or resolve an issue. If we found 4-6 people,
I think we would be covered and have a sustainable group.

The areas we need help are maintaining the doc build jobs, the
sphinx extensions in oslo.config and oslo.policy, the Sphinx theme,
and the template build tool in the openstack-manuals git repo. These
are all minimally complete, but there is definitely feature work
and bug fixing to do. I can guarantee that, if you sign up to help,
you will have a chance to land changes that will be visible for all
OpenStack users. At the start of Queens, I will be doing some
one-on-one training with volunteers to ensure they understand the
system we have in place now and help them start on some of the
remaining feature work.

If you are interested in helping, please let me know by following
up to this thread, and then join #openstack-docs on IRC.

Doug

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [tc] [all] TC Report 31

[Chris Dent]

(Rendered version: https://anticdent.org/tc-report-31.html )

Writing these reports is somewhat difficult when there hasn't been a
meeting and we're in a crunch time in the release cycle. The things
that have happened that are related to TC activity are disjointed, a
bit hard to track, and hard to summarize. There have, however, been a
few blips in IRC traffic in `#openstack-tc` and in the [governance
repo](https://review.openstack.org/#/q/project:openstack/governance+status:open),
so I'll attempt to apply my entirely subjective eye to those things.

# Tags, Projects, Deliverables, Oh My

The review to add the [api interop assert
tag](https://review.openstack.org/#/c/482759/) to ironic and nova has
foundered a bit on the diversity of opinions on not just what that
specific tag means, but what tags in general mean, and who uses them.
There's plenty of conversation on that review, as well as most
recently [some
chatter](http://eavesdrop.openstack.org/irclogs/%23openstack-tc/%23openstack-tc.2017-08-01.log.html#t2017-08-01T09:30:55)
in this morning's office hour.

One outcome of the discussion (in its many places) is that the primary
use of the tags is to engineer a technical solution to a marketing
problem, in the form of the [Project
Navigator](https://www.openstack.org/software/project-navigator/). As
such it tends to get messy at the interface and difference between the
boundaries and identifiers that matter to the people developing the
projects and the boundaries and identifiers that matter to the people
promoting or using the project navigator. It can also mean that anyone
who is aware of the marketing value of the tags may experince
conflicts when considering any of the tags which may be voluntarily
asserted.

The current case in point is that if asserting the api
interoperability tag is presented as a sign of maturity in the
navigator, any project that considers itself mature would like to not
be penalized in the event that they are mature in a way that is not
in alignment with the tag.

# The Top 5 List, Barbican, Designate, Castellan

Another topic from [this morning's office
hour](http://eavesdrop.openstack.org/irclogs/%23openstack-tc/%23openstack-tc.2017-08-01.log.html#t2017-08-01T09:01:39)
was discussing whether it might make sense to put contribution to the
barbican and designate projects on the [Top 5
List](https://governance.openstack.org/tc/reference/top-5-help-wanted.html)
and/or make them [base
services](https://governance.openstack.org/tc/reference/base-services.html)
(there's something of a chicken and egg problem there).

[Later in the
day](http://eavesdrop.openstack.org/irclogs/%23openstack-tc/%23openstack-tc.2017-08-01.log.html#t2017-08-01T13:23:01)
the topic was picked back up, with dims suggesting that castellan
should be the base requirement, not barbican. Castellan, however, does
not yet satisfy all the needs designate would have, if doing DNSSEC.

Further discussion required, as far as I could tell.

# Increasing Engagement From And With People In China

[Last Thursday's office
hour](http://eavesdrop.openstack.org/irclogs/%23openstack-tc/%23openstack-tc.2017-07-27.log.html#t2017-07-27T15:00:39)
started with a brief report about China where ttx and many others had
been at [OpenStack Days China](http://openstackdaychina.org/). This
led to a discussion about the many difficulties present in synchronous
communication technologies including all forms of chat, audio and
video. Each presents difficulties either in terms of comprehension,
limited access, or issues with latency.


yeh, we need to get people less al[l]ergic to doing real conversations
in email :) [sdague](http://p.anticdent.org/2Hac)


(Words to live by.)

--
Chris Dent  ┬──┬◡ﾉ(° -°ﾉ)   https://anticdent.org/
freenode: cdent tw: @anticdent__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [sahara] Telles Nobrega candidacy for Sahara PTL

[Telles Nobrega]

Hi all!

I am announcing my candidacy for PTL for the Sahara team for the Queens
release
cycle. In case you don't know me, I'm tellesnobrega on IRC. I started
working on Sahara in 2014 and became core in 2016 and not long after acted
as PTL for Pike cycle.

First of all, I would like to thank Vitaly Gridnev for all the help he gave
me on the beginning of the process, it was of great importance.

I have to confess that the job was a little overwhelming at the beggining
and took me some time to get used to the responsabilities and get a good
grip on how to handle the whole thing. I hope that I did a good job (the
team can speak better than I can about that) and hope that I will be able
to continue working as PTL this next cycle.

If you elect me, I would like to concentrate on the following efforts:

* CI and testing improvements.

  We currently don't have a specific CI deployed due to some problems with
ours servers but this is a issue that we are fixing at this time. What I
want to do is try to improve our CI for cases like this so we don't spend
as much for migration. Having a sort of backup instance or even run both
with a LB balancer so we can *always* a CI running.
Testing is always an issue that we have to take care and I hope to get us
some time to improve our test quality and coverage.

* Bug triaging.

This is something that I mentioned the last cycle but we never had time to
get around to it, so I'm putting this up again. Our bug queue is not
extense, but I did intend to shorten it and didn't. I plan to do this for
this next cycle.

* Cleaning up specs

We have quite a few proposed features (some of them are awesome) that never
got to be implemented. I would like to run over this and prioritize what we
would like to do and make this list smaller while we improve our project.

* Documentation

I've had troubles with our documentation, most people who try to run Sahara
have trouble due to faulty documentation. I would like for us on this cycle
to have a couple Doc days so we can remove old information, update what is
still relevant and make things simpler for users.

I really enjoyed this last cycle as PTL and hope that I can do an even
better job this time.

-- 

TELLES NOBREGA

SOFTWARE ENGINEER

Red Hat I 

tenob...@redhat.com

TRIED. TESTED. TRUSTED. 
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [release][ptl] new "linter" rules for openstack/releases repository

[Alex Schultz]

On Tue, Aug 1, 2017 at 12:07 PM, Doug Hellmann  wrote:
> The release team is working on a series of patches to improve the
> data validation within openstack/releases. Part of that work is to
> apply consistent formatting rules for all of the YAML files, so it
> is easier to build tools that automatically update those files. To
> enable those consistent rules, we have had to "normalize" the use
> of whitespace in a bunch of the existing files.
>
> These changes mean that if you have built your own automation for
> adding new releases, you might have to make adjustments. If you do,
> please take the time to look at the tools within the repo (in
> particular the new-release, interactive-release, and edit-deliverable
> commands) to see if they meet your needs, or can be extended to do
> so. There's not much point in all of us building our own tools. :-)
>
> If you're curious about the actual changes, you can have a look at the
> patch series for "queens-indentation" at
> https://review.openstack.org/#/q/project:openstack/releases+topic:queens-indentation
>

Was the linting rules applied via templates or is this something that
can be done programatically via pyyaml/ruamel.yaml or some other
library?  I know for the puppet release files I was using ruamel.yaml
to match up with what was being generated but this new formatting
seems to diverge from what it generates.   The last time I went
looking the tooling provided seemed to be using templates which didn't
match anything if you were trying to manage the files via normal yaml
objects which was kinda the problem.

Thanks,
-Alex

> Doug
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [oslo][oslo.db] nominating Jay Pipes for oslo-db-core

[Ben Nemec]

+1, always happy to have more contributors, especially to projects like 
oslo.db that almost everyone uses.


On 07/27/2017 09:04 AM, Doug Hellmann wrote:

I have noticed that Jay has been very deeply involved in several
recent design discussions about oslo.db, and he obviously has a
great deal of experience in the area, so even though he hasn't been
actively reviewing patches recently I think he would be a good
addition to the team. I have asked him, and he is interested and will
try to become more active as well.

Please indicate your opinion with +1/-1.

Doug

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev



__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tripleo][tripleo-heat-template] how to get interface name from network name in service profile

[Ben Nemec]

On 07/25/2017 09:53 PM, Zenghui Shi wrote:

Hi,

Could anyone shed some light on how to get the physical interface name 
(e.g eth0) from network name (e.g PublicNetwork, ExternalNetwork) in 
tripleo-heat-template service profile ?


for example:

I want to add a service profile under puppet/services/time/ptp.pp where 
it uses 'PtpInterface' as a parameter to get physical interface name 
(please refer to below piece of code), but I'd like to expose a more 
user friendly parameter like NetworkName(e.g. provision network, 
external network etc) instead of 'PtpInterface' and retrieve the actual 
physical interface name from the NetworkName where the physical 
interface is connected to, is there any possible way to do this ?


I don't think there is.  In many cases the templates don't even know the 
name of the physical device on which the network will be running.  A 
simple example would be when a user uses the nicX abstraction to specify 
interfaces in their net-iso templates.  That doesn't get mapped to an 
actual interface name until os-net-config runs, and the results of that 
run are not available to the templates.





parameters:
[...]
   PtpInterface:  #  ---> change this parameter to PtpNetwork
 default: eth0
 description: PTP interfaces name.
 type: string

resources:
   RoleParametersValue
 type: OS::Heat::Value
 properties:
   type: json
   value: # ---> add logic to get real interface name 
from PtpNetwork

 map_replace:
   - map_replace:
 - tripleo::profile::base::time::ptp::ptp4l_interface: 
PtpInterface

 - values: {get_param: [RoleParameters]}
   - values:
   PtpInterface: {get_param: PtpInterface}

outputs:
   role_data:
 description: Role ptp using commposable services.
 value:
   service_name: ptp
   config_settings:
 map_merge:
   - get_attr: [RoleParametersValue, value]
[...]


Thanks!
zenghui


__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev



__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [release][ptl] new "linter" rules for openstack/releases repository

[Doug Hellmann]

The release team is working on a series of patches to improve the
data validation within openstack/releases. Part of that work is to
apply consistent formatting rules for all of the YAML files, so it
is easier to build tools that automatically update those files. To
enable those consistent rules, we have had to "normalize" the use
of whitespace in a bunch of the existing files.

These changes mean that if you have built your own automation for
adding new releases, you might have to make adjustments. If you do,
please take the time to look at the tools within the repo (in
particular the new-release, interactive-release, and edit-deliverable
commands) to see if they meet your needs, or can be extended to do
so. There's not much point in all of us building our own tools. :-)

If you're curious about the actual changes, you can have a look at the
patch series for "queens-indentation" at
https://review.openstack.org/#/q/project:openstack/releases+topic:queens-indentation

Doug

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [puppet] PTL wanted

[Emilien Macchi]

It's an unusual request but we need a new PTL for Queens.
Alex Schultz and I have been leading Puppet OpenStack modules for some
time now and it's time to rotate.
We know you're out there consuming (and contributing) to the modules -
if you want this project to survive, it's time to step-up and give
some help.

Basically, we have enough reviewers for all the patches that come in -
no worries on this side.
What we need is a name to be the official PTL for Queens. The Puppet
OpenStack PTL is responsible of making sure we release on time (Alex
wrote scripts to release modules in one click so no worries) and have
rooms at PTG if needed (we didn't request one for Denver, not sure
we'll need in the future).
We don't have weekly meeting anymore, so really the workload isn't bad at all.

Since I've decided to not step up for PTL during Queens, what's going
to happen is that:
- option 1: Someone volunteers to learn and do it, with the full
support from me and Alex.
- option 2: Alex will step up because he's nice - but it's adding bits
in his (already too busy) buffer.
- option 3: I'll step up, but will make strict minimum to meet
requirements from TC.
- option 4: Set the project in maintenance mode.
- option 5: Remove the project from OpenStack governance.

I hope we can have volunteers in our great community, thanks in advance!
-- 
Emilien Macchi

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [TripleO] Non-voting job for testing container builds against tripleo-common

[David Moreau Simard]

Hi,

We temporarily stood up a third party job from review.rdoproject.org
for the tripleo-common project to test that container builds are not
broken as a result of a patch.

For example, recently we took out EPEL with overrides and all
containers built fine.
After that, we introduced barbican which relied on EPEL and once more
broke container builds [1].

This new job first builds a package for tripleo-common (DLRN-rpmbuild)
and then builds containers (rdo-kolla-build-integration) with that new
tripleo-common package using the overcloud_containers and overrides
files from it.
Since the job is third party, it is non-voting but I please ask core
reviewers on tripleo-common to pay attention to the job results so
that we don't break containers.

You can see an example of the job running here [2].

If you have any questions, please reach out to me.

Thanks,

[1]: 
https://trello.com/c/KIO2UiWo/227-kolla-error-creating-barbican-api-container-image-after-disabling-epel
[2]: https://review.openstack.org/#/c/489224/

David Moreau Simard
Senior Software Engineer | Openstack RDO

dmsimard = [irc, github, twitter]

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [elections][heat] Candidacy for Heat Project PTL (Queens)

[Rico Lin]

Hi team,

I would like to submit my name for Heat PTL for Queens release.

I'd been involved with the project around two and half years. And it's my
privilege to
work and learn within this great team and have the honor to serve as Pike
PTL.
No doubt, heat already become the engine for other OpenStack services who
try
to deploy and manage a scale services or applications. With some excellent
jobs
from the team, we got great improvements on resources, py35, WSGI, bug
fixes,
infrastructure, agents, and templates which I don't think we can do it
without
anyone in the team. And as what we always open for more ideas to join, it's
essential to embrace following jobs:

- Cross projects integration and improvement
- Welcome any developers/ops/users who work on heat in any format
- Make project goals. Also following community goals and project goals to
make
  sure it will complete.
- Provide as many resources and guidelines for members as possible when they
  need it. To make it more efficient when working on Heat.
- Ensuring that CI jobs are healthy (and we don't break other projects)
- On time releases with effective coordination and collaboration

So these are targets that I think we can work on. We will open to any idea,
and give it full discussion and help.

In past cycle, I do get a lot of help from other experienced members, which
allows me to learn and grow. And I tend to keep learning and growing from
any
opinions and experiences good or bad.
As usual, my goal is to reach all above targets and make sure this team will
be able to keep running well, keep integration to new things, and always
open
to ideas. This means we will keep trying and making mistake on the way, but
the result must be worth.

Hope you will consider me for Queens PTL.

Thank you!
Rico
-- 
May The Force of OpenStack Be With You,

*Rico Lin*irc: ricolin
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [all][ptl][docs] adding redirects for moved pages

[Doug Hellmann]

Excerpts from Doug Hellmann's message of 2017-08-01 12:29:38 -0400:
> When we started the doc-migration projects we knew that moving all
> of the content around would break a lot of external links. We said
> we would deal with it if we had time at the end of the cycle. We
> have put the changes into place to allow us to do that now. I'm
> going to explain it here, and answer questions in this thread, and
> then take the results and put them into the docs contributor guide.
> 
> 1. Add a .htaccess file to your repo.
> 
> The first step is to add the configuration file Apache needs to know
> what the redirect rules are, .htaccess. We have a global file in the
> openstack-manuals repository but in the spirit of not making the docs
> team a bottleneck for doc-related changes we have also configured
> Apache to allow a .htaccess file in each project's documentation.

I should add that we *only* allow Redirect and RedirectMatch rules in
these files, and that we are relying on review teams to avoid adding
rules that break access to their docs or redirect off-site. Reviewers,
please, be careful.

Doug

> 
> Sphinx needs to be told to include the file in the build output by
> adding it to the list of "extra" files. This patch for nova shows
> how that is done by editing doc/source/conf.py to set html_extra_path:
> https://review.openstack.org/#/c/487932/5/doc/source/conf.py
> 
> If that path is set to '_extras' then the patch should also create
> doc/source/_extras/.htaccess containing the redirects needed. The
> contents of that file can be written by hand, or computed with a command
> like:
> 
> git log --follow --name-status \
> --format='%H' origin/stable/ocata.. \
> -- doc/source | \
> grep ^R | \
> grep .rst | \
> cut -f2- | \
> sed -e 's|doc/source/|^/nova/([^/]+)/|' \
> -e 's|doc/source/|/nova/$1/|' \
> -e 's/.rst/.html$/' \
> -e 's/.rst/.html/' \
> -e 's/^/redirectmatch 301 /'
> 
> Obviously you need to replace the 2 references to "nova" with the base
> name of your git repository. The output will look something like:
> 
> redirectmatch 301 ^/nova/([^/]+)/aggregates.html$ 
> /nova/$1/user/aggregates.html
> redirectmatch 301 ^/nova/([^/]+)/architecture.html$ 
> /nova/$1/user/architecture.html
> redirectmatch 301 ^/nova/([^/]+)/block_device_mapping.html$ 
> /nova/$1/user/block-device-mapping.html
> redirectmatch 301 ^/nova/([^/]+)/cells.html$ /nova/$1/user/cells.html
> redirectmatch 301 ^/nova/([^/]+)/conductor.html$ /nova/$1/user/conductor.html
> redirectmatch 301 ^/nova/([^/]+)/feature_classification.html$ 
> /nova/$1/user/feature-classification.html
> redirectmatch 301 ^/nova/([^/]+)/filter_scheduler.html$ 
> /nova/$1/user/filter-scheduler.html
> redirectmatch 301 ^/nova/([^/]+)/placement.html$ /nova/$1/user/placement.html
> 
> Adding the resulting file to your repository will enable rules to
> redirect from paths like /nova/latest/aggregates.html to
> /nova/latest/user/aggregates.html.
> 
> 2. Enable detailed redirects for your project.
> 
> The other major portion of the move that we made was to take
> everything that was under /developer/$project/ and move it to
> /$project/latest/ (with similar moves for other versions). By
> default, any page under /developer/$project/ is now being redirected
> to /$project/latest/ to at least give the user a table of contents
> to find the new page. After a local .htaccess file is added to a
> projects documentation we can allow /developer/$project/(.*) to
> redirect to /$project/latest/$1 which will then redirect *again*
> to the new home of the file.
> 
> To turn that feature on for your repository, set the has_in_tree_htaccess
> flag for the repo by modifying www/project-data/latest.yaml in the
> openstack-manuals repository. See
> https://docs.openstack.org/contributor-guide/doc-tools/template-generator.html
> for details about the other flags you can set to control how your
> project appears on docs.o.o.
> 
> After the has_in_tree_htaccess flag change lands, links to URLs
> like docs.openstack.org/developer/nova/cells.html should (with 2
> redirects) end up at the new home
> docs.openstack.org/nova/latest/user/cells.html.
> 
> Let me know if you have any questions or run into any issues making
> these changes.
> 
> Doug

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [all][ptl][docs] adding redirects for moved pages

[Doug Hellmann]

When we started the doc-migration projects we knew that moving all
of the content around would break a lot of external links. We said
we would deal with it if we had time at the end of the cycle. We
have put the changes into place to allow us to do that now. I'm
going to explain it here, and answer questions in this thread, and
then take the results and put them into the docs contributor guide.

1. Add a .htaccess file to your repo.

The first step is to add the configuration file Apache needs to know
what the redirect rules are, .htaccess. We have a global file in the
openstack-manuals repository but in the spirit of not making the docs
team a bottleneck for doc-related changes we have also configured
Apache to allow a .htaccess file in each project's documentation.

Sphinx needs to be told to include the file in the build output by
adding it to the list of "extra" files. This patch for nova shows
how that is done by editing doc/source/conf.py to set html_extra_path:
https://review.openstack.org/#/c/487932/5/doc/source/conf.py

If that path is set to '_extras' then the patch should also create
doc/source/_extras/.htaccess containing the redirects needed. The
contents of that file can be written by hand, or computed with a command
like:

git log --follow --name-status \
--format='%H' origin/stable/ocata.. \
-- doc/source | \
grep ^R | \
grep .rst | \
cut -f2- | \
sed -e 's|doc/source/|^/nova/([^/]+)/|' \
-e 's|doc/source/|/nova/$1/|' \
-e 's/.rst/.html$/' \
-e 's/.rst/.html/' \
-e 's/^/redirectmatch 301 /'

Obviously you need to replace the 2 references to "nova" with the base
name of your git repository. The output will look something like:

redirectmatch 301 ^/nova/([^/]+)/aggregates.html$ /nova/$1/user/aggregates.html
redirectmatch 301 ^/nova/([^/]+)/architecture.html$ 
/nova/$1/user/architecture.html
redirectmatch 301 ^/nova/([^/]+)/block_device_mapping.html$ 
/nova/$1/user/block-device-mapping.html
redirectmatch 301 ^/nova/([^/]+)/cells.html$ /nova/$1/user/cells.html
redirectmatch 301 ^/nova/([^/]+)/conductor.html$ /nova/$1/user/conductor.html
redirectmatch 301 ^/nova/([^/]+)/feature_classification.html$ 
/nova/$1/user/feature-classification.html
redirectmatch 301 ^/nova/([^/]+)/filter_scheduler.html$ 
/nova/$1/user/filter-scheduler.html
redirectmatch 301 ^/nova/([^/]+)/placement.html$ /nova/$1/user/placement.html

Adding the resulting file to your repository will enable rules to
redirect from paths like /nova/latest/aggregates.html to
/nova/latest/user/aggregates.html.

2. Enable detailed redirects for your project.

The other major portion of the move that we made was to take
everything that was under /developer/$project/ and move it to
/$project/latest/ (with similar moves for other versions). By
default, any page under /developer/$project/ is now being redirected
to /$project/latest/ to at least give the user a table of contents
to find the new page. After a local .htaccess file is added to a
projects documentation we can allow /developer/$project/(.*) to
redirect to /$project/latest/$1 which will then redirect *again*
to the new home of the file.

To turn that feature on for your repository, set the has_in_tree_htaccess
flag for the repo by modifying www/project-data/latest.yaml in the
openstack-manuals repository. See
https://docs.openstack.org/contributor-guide/doc-tools/template-generator.html
for details about the other flags you can set to control how your
project appears on docs.o.o.

After the has_in_tree_htaccess flag change lands, links to URLs
like docs.openstack.org/developer/nova/cells.html should (with 2
redirects) end up at the new home
docs.openstack.org/nova/latest/user/cells.html.

Let me know if you have any questions or run into any issues making
these changes.

Doug


__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [security][barbican] PTG room sharing

[Dave McCowan (dmccowan)]

On 8/1/17, 12:21 PM, "Thierry Carrez"  wrote:

>Luke Hinds wrote:
>> Thanks Dave, I will let Kendall know that we can free up the room from
>> Mon / Tuesday, and instead have the sec proj join barbican on Wed /
>>Thur. 
>
>Note that we have extra room on Monday/Tuesday, so it would be OK to
>keep the room to have cross-project "security discussions", even if
>you'll have your team internal-facing meetings on Wed-Fri...
>
>For example we could use the time to advance the discussion around
>making Castellan/barbican a base service that every other project can
>depend on being present. Or any other cross-project discussion with a
>security focus.
>
>-- 
>Thierry Carrez (ttx)

Thanks!  I'd like to keep the room available for potential cross-project
meetings.  In Atlanta, we did have project teams drop in to discuss how to
integrate with Castellan/Barbican.


__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [SPAM] Re: [security][barbican] PTG room sharing

[Thierry Carrez]

Luke Hinds wrote:
> Thanks Dave, I will let Kendall know that we can free up the room from
> Mon / Tuesday, and instead have the sec proj join barbican on Wed / Thur. 

Note that we have extra room on Monday/Tuesday, so it would be OK to
keep the room to have cross-project "security discussions", even if
you'll have your team internal-facing meetings on Wed-Fri...

For example we could use the time to advance the discussion around
making Castellan/barbican a base service that every other project can
depend on being present. Or any other cross-project discussion with a
security focus.

-- 
Thierry Carrez (ttx)

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [nova] Working toward Pike RC1

[Matt Riedemann]

Now that we're past feature freeze for Pike, I've started an etherpad 
for tracking items needed to get done before the first release candidate 
here:


https://etherpad.openstack.org/p/nova-pike-release-candidate-todo

Just a reminder but Pike RC1 is Thursday August 10th.

--

Thanks,

Matt

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [ironic] Dmitry Tantsur candidacy for Bare Metal (Ironic) PTL

[Dmitry Tantsur]

Hi all!

I am announcing my candidacy for PTL for the Ironic team for the Queens release
cycle. In case you don't know me, I'm dtantsur on IRC. I started working on
Ironic around late spring or summer 2014 (oh, time flies!), and has been
dedicated full time to bare metal provisioning since then.

I am not going to surprise anyone, if I say that the Pike cycle was a difficult
one. We've gone through removing four cores and through several iterations of
re-prioritization. The team has done an amazing job keeping the pace - thank
you all for that. This also required me to change my personal priorities for
the cycle, concentrating more on keeping the project healthy and going. I hope
I did not let you down.

If you elect me, I would like to concentrate on the following efforts:

* CI and testing improvements.

  This was on my agenda for Pike, and I'm not giving up on it. We have
  introduced multi-node jobs, a standalone job. I believe that the 3rd party CI
  have become more reliable since the beginning of the cycle.

  I would like to broaden the use of the standalone tests in the main and in
  3rdparty CI to reduce the resource pressure and to be able to cover more
  important aspects of Ironic. I would like us to cover a few important testing
  gaps, such as testing adoption or root device hints.

* Improve the prioritization process.

  I believe that we have been doing really well with our weekly priorities
  process. However, we have clearly had too many big items on our plate this
  cycle. That required an extensive de-prioritization in the end, leaving
  people frustrated. That also made it harder for less-of-a-priority changes,
  such as vendor-specific patches to get in.

* Bug triaging.

  One of my PTL promises during the last election was to improve the bug
  handling process, and I apologize for not having done it. I would like
  to change it, and make sure that our bug backlog reduces instead of slowly
  growing. This may include better processes around incoming bug triaging,
  smarter dashboard and some automation, e.g. for handling old bugs.

* Stabilization and paper cut bug fixing.

  This is related to the prioritization topic above. We've been chasing big
  stuff over a few cycles. That was absolutely justified, and we've landed
  several absolutely mind-blowing features, such as ironic-neutron integration
  or boot-from-volume.

  Now, I think, it's time to slow down a tiny bit, and think of the things that
  can make every day life managing an ironic deployment easier. Treating of the
  maintenance mode, reporting of cleaning progress, error messages and logging,
  just to name a few.

  Of course, this includes documentation for operators. As you know, I've spent
  some substantial time this cycle writing and refining installation and
  operation docs. With the documentation reform in place we have even more
  power over them - let's use it wisely.

And as the last time, my significant goal will be not to get in a way of our
wonderful team :)

-- Dmitry Tantsur

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [puppet] End of scheduled IRC meetings

[Emilien Macchi]

On Tue, Aug 1, 2017 at 8:16 AM, Alex Schultz  wrote:
> Hey everyone,
>
> So over the last cycle as participation has dropped off, we've been
> having less of the scheduled meetings. In today's meeting[0] it was
> expressed that the formal meeting is nice but realistically it's more
> work than it's worth these days. So we will be dropping the formal
> schedule meeting in #openstack-meeting-4 in favor of ad-hoc meetings
> in #puppet-openstack when needed.  I will be updating the appropriate
> documentation and will be proposing the change to
> openstack-infra/irc-meetings.  As always if anyone objects, please
> feel free to reply.

+1 on my side. We're already dealing with things on #puppet-openstack
quite well, imo.
I don't think we need the meeting anymore.

> Thanks,
> -Alex
>
>
> [0] 
> http://eavesdrop.openstack.org/meetings/puppet_openstack/2017/puppet_openstack.2017-08-01-15.00.html
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev



-- 
Emilien Macchi

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [election][release] Sean McGinnis candidacy for Release Management PTL

[Sean McGinnis]

Hey everyone,

I would like to submit my name for release management PTL for the Queens
release.

I've just recently been added to the core team, but I've been around for
a few cycles interacting with the release management team. So I've been
able to see the great work that they've done up to this point in scripting
much of the process. Their work has been amazing in reducing the amount
of manual steps that need to be taken, and I've been very impressed by the
discipline they've had of actually writing down how all of this works.

With all of that history, I'm confident that I can quickly get up to
speed and hopefully continue to contribute to leading the release manager
activites. Thierry, Doug, and others will also still be around and have
that history, knowledge, and willingness to help that will greatly help.

Personally, I would love to devote more time to some of these cross-project
activities that are absolutely essential to keep things moving smoothly.
I'm lucky enough to be in a position where I can now do that.

My plan for the cycle would not be anything really that exciting. I think
just continuing with the great work that has been done already and looking
for any other areas where we can automate and make the release team a
resource for other projects to go to when they need it. I would also do
whatever I can to encourage and educate others to also participate in this
important, but most behind the scenes, activity.

Thanks for your consideration.

Sean McGinnis (smcginnis)

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [elections][security] Candidacy for Security Project PTL (Queens)

[Luke Hinds]

Hello All,

I would like to announce my candidacy for Security Project PTL for
Queens.

I have been a member of the Security Project for 2-3 years, and a
core member for one year.

During my tenure as core I have managed public and embargoed security
notes and contributed with my feedback to the VMT team on OpenStack
vulnerabilities.

I have also been an active contributor to the security guide as well as a
regular reviewer. I am the current driver for the security guide
launchpad page.

As PTL, I'd like to focus on the following things:

* Documentation

I am currently planning a revamp of the Security guide to bring it up to
date with Pike. To do this I will reach out to other projects to help
validate the information in the guide is technically correct and up to
date.

I also would like to migrate the checklists into a format that can be
easily filtered to a specific release, thereby allowing other security
tools and processes to easily consume the content and gain a snapshot
of what security actions are required to harden any given release.

I also plan to encourage others to get involved, with topics arranged for
the coming PTG on key management.

* Support and championing of OpenStack security projects.

I would like to put forward continued support by means of reviews and
feedback for the projects currently having their home under the
security project, and I have plans to propose further projects. Our
close synergy with the Barbican project should continue to be fostered,
and encouraged.

* Perform Threat Analysis with further projects

The Threat Analysis project has proved very useful in helping the VMT
and operators understand the threat landscape pertinent to each OpenStack
project. I will work with and encourage other projects to undergo threat
analysis.

* Encourage more contributions and grow some new cores

The security project has lost a good number of core members due to
companies shifting priorities, so I would like increase the projects
exposure with blog posts to planet.openstack.org and by outreach at
various other tech events. I see it as vital to keep the security
project afloat, as operators rely so much on the project for
guidance on securing OpenStack clouds.

Regards,

Luke Hinds (lhinds)
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [puppet] End of scheduled IRC meetings

[Alex Schultz]

Hey everyone,

So over the last cycle as participation has dropped off, we've been
having less of the scheduled meetings. In today's meeting[0] it was
expressed that the formal meeting is nice but realistically it's more
work than it's worth these days. So we will be dropping the formal
schedule meeting in #openstack-meeting-4 in favor of ad-hoc meetings
in #puppet-openstack when needed.  I will be updating the appropriate
documentation and will be proposing the change to
openstack-infra/irc-meetings.  As always if anyone objects, please
feel free to reply.

Thanks,
-Alex


[0] 
http://eavesdrop.openstack.org/meetings/puppet_openstack/2017/puppet_openstack.2017-08-01-15.00.html

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [tripleo] tips to debug TripleO CI more easily

[Emilien Macchi]

One of the feedback we've got during the TripleO QuickStart transition
was "where do I find logs".
We've implemented a README file that we hope will evolve but the basic
piece is now in place.

See for example:
http://logs.openstack.org/50/487450/8/check-tripleo/gate-tripleo-ci-centos-7-ovb-ha-oooq/f93b0bd/logs/

The readme is at the root of logs and explains you very basic bits on
where to find logs. We hope to continue this work to make the readme
even better but I thought it would be useful to share this progress.

Any feedback / contribution on this new thing is welcome!

Thanks,

Note: special thanks to openstack-infra for their help to make it happen.
-- 
Emilien Macchi

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [All][Trove] Adding Amrith candidacy for Trove.Queens

[Amrith Kumar]

This email is to announce my candidacy for the PTL of Trove for the
Queens cycle. My candidacy has been formally submitted in[1].

I have been the PTL for the Trove project since the Trove release (in
March 2016). During this time, we've seen significant improvements
during the Newton and Ocata releases but faced a setback with the
departure of several companies from the community in the Pike release.

Trove faces many of the same challenges faced by projects that are not
part of the 'core' of OpenStack. Even though the last two user
surveys[2,3] show that Trove is one of the popular projects that
people want to adopt, this has not translated into an increase in
active participation.

The challenges facing Trove in the Queens release are broadly to:

1. improve active participation and contribution in code reviews and
   stabilize the core reviewer team.
2. keep up with changes in the rest of OpenStack
3. stabilize and maintain the existing code base

Two important aspects of my candidacy that are worth highlighting
here.

The first is that I am in favor of taking a serious look at the
current Trove architecture and revisiting whether we should
reimplement the project as a layered platform project that better
leverages underlying infrastructure (IaaS) projects. A good discussion
on the mailing list [4] surfaced a number of ideas which I intend to
discuss in depth at the PTG in Denver with other members of the
team. The hope is that we can come out of the PTG with a clear action
plan, and more importantly a commitment from participants to work on
the project and implement that plan.

The second is that at least in the Queens release, and until we can
get to the point where we have more active participation in the
project, I intend to place the project in 'maintenance-mode'. A change
has been proposed in the governance repository[5] to make this
happen. I expect however that the TC will respect the wishes of
whoever is elected PTL of the project in this election cycle.

I highlight both of these aspects (above) because they are not
universally accepted. I am aware that at least one other person wishes
to also run for election to the position of Trove PTL in the Queens
cycle, and we differ in our views on these two subjects. As I write
this, he has not yet announced his candidacy, and I will likely be
submitting this before he does so I will merely note that we differ on
how to approach the issue of rearchitecting Trove (he would prefer we
continue down the current path and stabilize/enhance it rather than
rearchitect it), and does not favor the notion of attaching the
maintenance-mode tag to the project.

While we differ on these two issues, I intend to remain an active
participant in the project, and support the PTL's lead if I am not
re-elected.

[1] https://review.openstack.org/48962
[2] https://www.openstack.org/assets/survey/April2017SurveyReport.pdf
[3] https://www.openstack.org/assets/survey/October2016SurveyReport.pdf
[4] http://openstack.markmail.org/thread/wokk73ecv44ipfjz
[5] https://review.openstack.org/#/c/488947/

-amrith
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [CIX][dci][BZ:1449769][selinux-policy]RHEL7.4's keepalived breaks the undercloud+ssl

[Gonéri Le Bouder]

Hi,

RACKSPACE enables SSL on ther undercloud. keepalived does not set up the
VIP anymore (BZ1475505) because of a regression. This regression should
be fixed by an update of selinux-policy (BZ1449769).

This bug breaks the RAX/DCI configuration.

Regards,
-- 
Gonéri Le Bouder


signature.asc
Description: PGP signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [FEMDC] IRC meeting Tomorrow 15:00 UTC

[lebre . adrien]

Dear all, 

As usual, the agenda is available at: 
https://etherpad.openstack.org/p/massively_distributed_ircmeetings_2017 (line 
991)
Please feel free to add items.

Best,
Ad_rien_
PS: Paul-André will chair the meeting (I'm taking some holidays ;))

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [security][barbican] PTG room sharing

[Luke Hinds]

On Tue, Aug 1, 2017 at 2:50 PM, Dave McCowan (dmccowan) 
wrote:

>
> Hello Barbican Team,
>
> I believe there were some discussions on room sharing between the security
> project and barbican team.
>
> We are still keen on this in the security project. How would you like to
> work out logistics?
>
> Should we share PTG planning etherpads?
>
> We have 4 days between us, not sure if we will need all four, did you have
> anything in mind here? So far I don't expect the security project will need
> more then a day at max (if that).
>
> p.s. I am plan to come onto the Barbican irc weekly meeting, if you prefer
> to sketch out the details there.
>
> Regards,
>
> Luke
>
>
> Hi Luke--
> We'd be happy to continue of tradition of sharing mid-cycle/PTG
> meeting time and place.
> Per the schedule, Security has a room reserved Monday and Tuesday;
> Barbican has a room reserved Wednesday and Thursday.
> Our etherpad is here: https://etherpad.openstack.org/p/barbican-ptg-
> queens.
>
> Anyone with an interest in key management, encryption, or other
> security topics please feel welcome to join us and add your name and topics
> to the etherpad.
>
> Thanks!
> --Dave
>

Thanks Dave, I will let Kendall know that we can free up the room from Mon
/ Tuesday, and instead have the sec proj join barbican on Wed / Thur.
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [security][barbican] PTG room sharing

[Dave McCowan (dmccowan)]

Hello Barbican Team,

I believe there were some discussions on room sharing between the security 
project and barbican team.

We are still keen on this in the security project. How would you like to work 
out logistics?

Should we share PTG planning etherpads?

We have 4 days between us, not sure if we will need all four, did you have 
anything in mind here? So far I don't expect the security project will need 
more then a day at max (if that).

p.s. I am plan to come onto the Barbican irc weekly meeting, if you prefer to 
sketch out the details there.

Regards,

Luke

Hi Luke--
We'd be happy to continue of tradition of sharing mid-cycle/PTG meeting 
time and place.
Per the schedule, Security has a room reserved Monday and Tuesday; Barbican 
has a room reserved Wednesday and Thursday.
Our etherpad is here: https://etherpad.openstack.org/p/barbican-ptg-queens.

Anyone with an interest in key management, encryption, or other security 
topics please feel welcome to join us and add your name and topics to the 
etherpad.

Thanks!
--Dave

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [horizon] A Monitoring panel plugin for Horizon

[BİLGEM BTE]

Hi all, 

We are happy to share with you that we developed an AngularJS based usage 
monitoring panel for Horizon. 
The panel visualizes the collected utilization data by Ceilometer. 

Source code is now available on github [1]. 

The plugin consists of 3 panels; a monitoring panel for users, a project 
monitoring panel and a hypervisor monitoring panel for admins. 

A user can display utilization charts for the current project's instances, 
export the metrics in csv format and launch alarms using the dashboard. 
We have another service to capture these alarms and send notification e-mails 
to the cloud users which is also available on github.com/b3lab. 
An admin can display projects' utilization charts, export the metrics in csv 
format in Project Monitor panel. And the Hypervisor Monitor panel is to 
visualize SNMP based metrics collected from hypervisors. 

We are currently improving some features. 

Some screenshots published at our website [2]. We also uploaded two videos 
showing some features of the plugin [3][4]. 

All comments and ideas are welcome! 

[1] https://github.com/b3lab/safir_monitor_dashboard 
[2] https://www.b3lab.org/safir-monitor-dashboard-github-uzerinde-yayinlandi/ 
[3] https://www.youtube.com/watch?v=mAKU20b65Ug 
[4] https://www.youtube.com/watch?v=kllf4s2qutg 



Gökhan Işık 
TÜBİTAK BİLGEM B3LAB 
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [magnum] Interface configuration and assumptions for masters/minions launched by magnum

[Mark Goddard]

I'm going to assume we're talking about a typical environment with nova and
neutron here. There are two separate boots to consider:

1. The IPA deployment ramdisk, which writes the user's image to the node's
disk.
2. The user's image.

Prior to 1, ironic communicates with neutron to apply additional DHCP
options required for network booting to the DHCP response issued to the
deployment ramdisk during provisioning.

When the user's image boots (assuming the node is configured for localboot
rather than netboot), it is not really any different than a typical nova
VM. The image, often using a service such as cloud-init, should arrange for
the appropriate interface(s) to start a DHCP client. Neutron will be
configured to provide a DHCP response.

The missing piece that enables the use of multiple network interfaces is
physical network awareness [1]. This feature will be available in the Pike
release, and allows an operator to tag ironic ports with the physical
network to which they are attached. With this information, ironic is able
to correctly map the virtual neutron ports passed by the user via nova to
the physical ironic ports. Previously, this mapping was essentially random
and would lead to the node's DHCP requests landing at the wrong neutron
DHCP server instance in some cases.

[1] https://bugs.launchpad.net/ironic/+bug/1666009

Mark

On 28 July 2017 at 12:29, Waines, Greg  wrote:

> Thanks for the info Mark.
>
>
>
> A dumb question ... can’t seem to find the answer in ironic documentation
> ...
>
> · I understand how the interface over which the bare metal
> instance network boots/installs gets configured ...
> i.e. thru DHCP response/configuration from the ironic conductor dhcp/boot
> server
>
> · but how would other interfaces, get configured on the bare
> metal server by ironic ?
>
>
>
>
>
> Greg.
>
>
>
> *From: *Mark Goddard 
> *Reply-To: *"openstack-dev@lists.openstack.org"  openstack.org>
> *Date: *Friday, July 28, 2017 at 5:08 AM
> *To: *"openstack-dev@lists.openstack.org"  openstack.org>
> *Subject: *Re: [openstack-dev] [magnum] Interface configuration and
> assumptions for masters/minions launched by magnum
>
>
>
> Hi Greg,
>
>
>
> Magnum clusters currently support using only a single network for all
> communication. See the heat templates[1][2] in the drivers.
>
> .
>
> On the bare metal side, currently ironic effectively supports using only a
> single network interface due to a lack of support for physical network
> awareness. This feature[3] will be added in the Pike release, at which
> point it will be possible to create bare metal instances with multiple
> ports.
>
>
>
> [1] https://github.com/openstack/magnum/tree/master/
> magnum/drivers/k8s_fedora_atomic_v1/templates
>
> [2] https://github.com/openstack/magnum/tree/master/magnum/
> drivers/k8s_coreos_v1/templates
>
> [3] https://bugs.launchpad.net/ironic/+bug/1666009
>
>
>
> Mark
>
>
>
> On 17 July 2017 at 14:27, Waines, Greg  wrote:
>
> When MAGNUM launches a VM or Ironic instance for a COE master or minion
> node, with the COE Image,
>
> What is the interface configuration and assumptions for these nodes ?
>
> e.g.
>
> - only a single interface ?
>
> - master and minion communication over that interface ?
>
> - communication to Docker Registry or public Docker Hub over that
> interface ?
>
> - public communications for containers over that interface ?
>
>
>
> Greg.
>
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
>
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
>
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [Blazar] review meeting date for Pike release

[Masahito MUROI]

Hi Blazar folks,

As we discussed in the last weekly meeting, the team has a patch review 
meeting for Pike release.  In the meeting the team reviews patches 
targeting to Pike release is ready to merge or not. And if not, we 
decide what's needed to fix before merge.


The meeting date is 9am on 8/3 and 8/7 (Option) at #openstack-blazar 
channel.


best regards,
Masahito


__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tricircle]

[meher.hihi]

Hello,

The problem was related to the proxy, I added the ip address of keystone to the 
variable no_proxy, so that Tricircle is now successfully installed in the two 
nodes.

Regards,

Meher

[Logo Orange]

Meher Hihi
Intern
ORANGE/IMT/OLN/WTC/CMA/MAX
Fixe : +33 2 96 07 03 
71
Mobile : +33 7 58 38 68 
87
meher.h...@orange.com


De : HIHI Meher IMT/OLN
Envoyé : lundi 31 juillet 2017 15:32
À : 'openstack-dev@lists.openstack.org'
Objet : [openstack-dev] [tricircle]

Hello everybody,

I just installed Tricirle on a single node. Now I'm trying to install it on two 
nodes (two VMs), everything was fine with the first node, Tricirle is well 
installed, on the second node, at the end of the script install it stops on An 
error "Failed to discover available versions when contacting 
http://192.168.123.129/identity. Attempting to parse version from URL."

So it seems that there is a connection problem with the keystone service on the 
first machine, as far as the connectivity between the 2 nodes is concerned, it 
is perfect.

I am sending you this mail to find out if anyone can help me on this. I thank 
you in advance!

Regards,

Meher

[Logo Orange]

Meher Hihi
Intern
ORANGE/IMT/OLN/WTC/CMA/MAX
Fixe : +33 2 96 07 03 
71
Mobile : +33 7 58 38 68 
87
meher.h...@orange.com



_

Ce message et ses pieces jointes peuvent contenir des informations 
confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce 
message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages 
electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou 
falsifie. Merci.

This message and its attachments may contain confidential or privileged 
information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete 
this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been 
modified, changed or falsified.
Thank you.

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [keystone][kubernetes] Webhook PoC for Keystone based Authentication and Authorization for Kubernetes

[Davanum Srinivas]

Team,

Having waded through the last 4 attempts as seen in kubernetes PR(s)
and Issues and talked to a few people on SIG-OpenStack slack channel,
the consensus was that we should use the Webhook mechanism to
integrate Keystone and Kubernetes.

Here's the experiment : https://github.com/dims/k8s-keystone-auth

Anyone interested in working on / helping with this? Do we want to
create a repo somewhere official?

Thanks,
Dims

-- 
Davanum Srinivas :: https://twitter.com/dims

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [publiccloud-wg] Reminder meeting PublicCloudWorkingGroup

[Tobias Rydberg]

Hi everyone,

Don't forget tomorrows meeting for the PublicCloudWorkingGroup. A lot of 
important stuff to chat about =)

1400 UTC  in IRC channel #openstack-meeting-3

Etherpad: https://etherpad.openstack.org/p/publiccloud-wg

Regards,
Tobias Rydberg


smime.p7s
Description: S/MIME Cryptographic Signature
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tc][kolla] Distribute Ansible module with Kolla

[Thierry Carrez]

Steven Dake wrote:
> Doung,
> 
> The TC cannot provide legal advice as they are not attorneys (forgive me
> if there are TC members that also have legal credentials coupled with a
> legal degree).  I'd suggest contacting your specific companies legal
> counsel.  If that doesn't yield results, you might try the legal list.
> 
> The dev mailer is no place for this discussion.
Although I'm not a lawyer, I replied on the legal-discuss thread asking
for more information, and pointing to:

https://governance.openstack.org/tc/reference/licensing.html

Let's follow-up there.

-- 
Thierry Carrez (ttx)

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [neutron] FFE for midonet v2 plugin removal

[Takashi Yamamoto]

On Tue, Aug 1, 2017 at 8:01 AM, Takashi Yamamoto  wrote:
> hi,
>
> I'm not sure if changes like this requires an FFE, but just in case.
> I'd like to request an FFE for midonet v2 plugin removal.
>
> - patches are ready for review: https://review.openstack.org/#/c/486790/
> - https://bugs.launchpad.net/networking-midonet/

oops, bad copy and paste.
https://bugs.launchpad.net/networking-midonet/+bug/1680347

> - this is a removal of an already-deprecated plugin
> - the replacement code (midonet drivers for ml2) covers the most or
> probably all functionalities provided by the plugin being removed
> - the change is local to networking-midonet

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] [tc][kolla] Distribute Ansible module with Kolla

[Steven Dake]

Doung,

The TC cannot provide legal advice as they are not attorneys (forgive me if
there are TC members that also have legal credentials coupled with a legal
degree).  I'd suggest contacting your specific companies legal counsel.  If
that doesn't yield results, you might try the legal list.

The dev mailer is no place for this discussion.

Regards
-steve


On Mon, Jul 31, 2017 at 11:06 PM, duon...@vn.fujitsu.com <
duon...@vn.fujitsu.com> wrote:

> Cross-post from [1]
>
> Hello everyone,
>
> I'm looking for legal advice about distribute Ansible module within Kolla.
> In order to implement one feature in Kolla, I need developing one
> Ansible strategy plugin, which in turn need to include and inherit from
> a couple modules from Ansible. Kolla does not use the plugin directly,
> but Kolla will invoke Ansible (through popen) and Ansible uses this plugin.
>
> The question is, can I distribute this plugin along with Kolla-Ansible
> deliverable?
>
> [1] http://lists.openstack.org/pipermail/legal-discuss/2017-
> July/000478.html
>
> Thanks,
>
> Ha Quang Duong (Mr.)
> IRC duonghq
> PODC - Fujitsu Vietnam Ltd.
>
> __
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

[openstack-dev] [tc][kolla] Distribute Ansible module with Kolla

[duon...@vn.fujitsu.com]

Cross-post from [1]

Hello everyone,

I'm looking for legal advice about distribute Ansible module within Kolla.
In order to implement one feature in Kolla, I need developing one
Ansible strategy plugin, which in turn need to include and inherit from
a couple modules from Ansible. Kolla does not use the plugin directly,
but Kolla will invoke Ansible (through popen) and Ansible uses this plugin.

The question is, can I distribute this plugin along with Kolla-Ansible 
deliverable?

[1] http://lists.openstack.org/pipermail/legal-discuss/2017-July/000478.html

Thanks,

Ha Quang Duong (Mr.)
IRC duonghq
PODC - Fujitsu Vietnam Ltd.

__
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev