Page MenuHomePhabricator
Create Task
Maniphest T220051

Puppet cleanup around OpenStack
Closed, ResolvedPublic
Actions

Description

Following the discussion at this morning's retro, we resolved to try to clean up and perhaps simplify the openstack puppet system we have in place.

Details

SubjectRepoBranchLines +/-
openstack: cleanup nova-network version of novaoperations/puppetproduction+65 -181
openstack: remove unused common classoperations/puppetproduction+0 -19
openstack: clientpackages: decouple configurationoperations/puppetproduction+187 -40
openstack: clientpackages: vms: fix assert for realmoperations/puppetproduction+1 -1
openstack: clientpackages: split profile for VM instancesoperations/puppetproduction+286 -7
Customize query in gerrit

Related Objects
Search...

Event Timeline

Bstorm assigned this task to Andrew.Apr 3 2019, 11:00 PM
Bstorm triaged this task as Medium priority.
Bstorm created this task.

I'm leaving this more or less for @aborrero and @Andrew to edit :)

Andrew removed Andrew as the assignee of this task.Apr 19 2019, 5:07 PM

I'm unassigning myself because I'm not quite sure what this means :)

The deployment-specific profiles in the openstack setup are a mess, but otherwise I think I'm not all that dissatisfied with our puppet code. Chase rewrote all of them not very long ago, so I'm skeptical that another rewrite would help much. I'm open to airing of specific grievances though!

aborrero claimed this task.Apr 22 2019, 9:32 AM

Quick summary without further research:

  • The first one, which is biting us from time to time is the clientpackages stuff. The problem there is that is used by every VM and also HW servers, so a refactor there should be done with extra care. I already tried (and reverted) a couple of times :-P I will try again soon.
  • the second one is hiera inconsistencies. Deployment-specific profiles using :profile::openstack:::base:: hiera keys, etc The physical path in the puppet tree in which they live (usually hieradata/*/profile/*) also caused some issues in the past.
  • lack of guidelines or rules. We (mostly me) constantly introduce inconsistencies because we don't have clear rules on how to do certain things. Small and quick example of this are stuff like templates living in modules/openstack/templates/$openstack/$component vs puppet classes living in modules/openstack/manifests/$component/$openstack The difference in the hierarchy is inconsistent and leads to [human] errors.
  • there are several files and templates namespaced to a concrete openstack version (modules/{templates,files}/mitaka/*), but they probably don't require this. Bootstrapping another openstack release means duplicating a lot of LOCs.
  • we can't reimage some server roles in a single/double puppet agent run. This has probably improved recently, but last time I checked we required like 3 or 4 puppet agents runs before puppet could set up everything. Several missing relationships, etc.

The puppet code is working, but given how important the code is, I believe we should address all these issues (even if they are small).

gerritbot added a comment.Apr 24 2019, 12:17 PM

Change 506135 had a related patch set uploaded (by Arturo Borrero Gonzalez; owner: Arturo Borrero Gonzalez):
[operations/puppet@production] openstack: clientpackages: split profile for VM instances

https://gerrit.wikimedia.org/r/506135

gerritbot added a project: Patch-For-Review.Apr 24 2019, 12:17 PM
gerritbot added a comment.Apr 24 2019, 12:44 PM

Change 506135 merged by Arturo Borrero Gonzalez:
[operations/puppet@production] openstack: clientpackages: split profile for VM instances

https://gerrit.wikimedia.org/r/506135

gerritbot added a comment.Apr 24 2019, 12:52 PM

Change 506146 had a related patch set uploaded (by Arturo Borrero Gonzalez; owner: Arturo Borrero Gonzalez):
[operations/puppet@production] openstack: clientpackages: vms: fix assert for realm

https://gerrit.wikimedia.org/r/506146

Stashbot added a comment.Apr 24 2019, 12:54 PM

Mentioned in SAL (#wikimedia-cloud) [2019-04-24T12:54:29Z] <arturo> T220051 puppet broken in every VM in Cloud VPS, fixing right now

gerritbot added a comment.Apr 24 2019, 12:54 PM

Change 506146 merged by Arturo Borrero Gonzalez:
[operations/puppet@production] openstack: clientpackages: vms: fix assert for realm

https://gerrit.wikimedia.org/r/506146

gerritbot added a comment.Apr 29 2019, 8:53 AM

Change 506952 had a related patch set uploaded (by Arturo Borrero Gonzalez; owner: Arturo Borrero Gonzalez):
[operations/puppet@production] openstack: clientpackages: decouple configuration

https://gerrit.wikimedia.org/r/506952

gerritbot added a comment.Apr 29 2019, 9:10 AM

Change 506952 merged by Arturo Borrero Gonzalez:
[operations/puppet@production] openstack: clientpackages: decouple configuration

https://gerrit.wikimedia.org/r/506952

Maintenance_bot removed a project: Patch-For-Review.May 22 2019, 3:33 PM
gerritbot added a comment.Jun 5 2019, 9:08 AM

Change 514445 had a related patch set uploaded (by Arturo Borrero Gonzalez; owner: Arturo Borrero Gonzalez):
[operations/puppet@production] openstack: remove unused common class

https://gerrit.wikimedia.org/r/514445

gerritbot added a project: Patch-For-Review.Jun 5 2019, 9:08 AM

Change 514445 merged by Arturo Borrero Gonzalez:
[operations/puppet@production] openstack: remove unused common class

https://gerrit.wikimedia.org/r/514445

Maintenance_bot removed a project: Patch-For-Review.Jun 5 2019, 9:10 AM
Bstorm added a parent task: T227211: Action items and work for retro 20190703.Jul 3 2019, 5:42 PM
bd808 moved this task from Inbox to Doing on the cloud-services-team (Kanban) board.Jul 11 2019, 4:29 PM
aborrero added a subtask: T229274: python files under modules/openstack/files/mitaka/admin_scripts fail pep8.Jul 30 2019, 9:24 AM
aborrero closed subtask T229274: python files under modules/openstack/files/mitaka/admin_scripts fail pep8 as Resolved.
aborrero moved this task from Doing to Soon! on the cloud-services-team (Kanban) board.Aug 14 2019, 1:47 PM
gerritbot added a comment.Aug 15 2019, 9:01 AM

Change 530332 had a related patch set uploaded (by Arturo Borrero Gonzalez; owner: Arturo Borrero Gonzalez):
[operations/puppet@production] openstack: cleanup nova-network version of nova

https://gerrit.wikimedia.org/r/530332

gerritbot added a project: Patch-For-Review.Aug 15 2019, 9:01 AM
gerritbot added a comment.Aug 15 2019, 2:05 PM

Change 530332 merged by Arturo Borrero Gonzalez:
[operations/puppet@production] openstack: cleanup nova-network version of nova

https://gerrit.wikimedia.org/r/530332

Maintenance_bot removed a project: Patch-For-Review.Aug 15 2019, 2:10 PM
bd808 moved this task from Soon! to Doing on the cloud-services-team (Kanban) board.Sep 11 2019, 3:27 PM
aborrero moved this task from Doing to Soon! on the cloud-services-team (Kanban) board.Sep 25 2019, 3:16 PM

I'm not actively working on this right now. Un-claiming it for now.

aborrero removed aborrero as the assignee of this task.Oct 23 2019, 3:16 PM
aborrero closed this task as Resolved.Oct 29 2019, 4:57 PM
aborrero claimed this task.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL