Page MenuHomePhabricator
Create Task
Maniphest T235129

nova-fullstack: add cleanup checking
Open, MediumPublic
Actions

Description

Our designate-sink hooks break a lot. The parts that create dns entries are tested by nova-fullstack, but we should also check that cleanup happens properly:

  1. Does the dns entry go away after the VM is deleted?
  2. Does the puppet cert get cleaned up after the VM is deleted?

If we leak and alert on those failures we can at least reduce the swarms of things that we leak whenever designate changes slightly.

Details

SubjectRepoBranchLines +/-
nova-fullstack: add puppet cert monitoringoperations/puppetproduction+80 -4
cloud puppetmasters: allow nova controllers to use the certmanager accountoperations/puppetproduction+17 -1
nova-fullstack tests: add a test for dns cleanup post-deleteoperations/puppetproduction+33 -0
Customize query in gerrit

Event Timeline

Andrew created this task.Oct 9 2019, 9:04 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 9 2019, 9:04 PM
Paladox subscribed.Oct 9 2019, 9:07 PM
gerritbot added a comment.Oct 10 2019, 4:42 PM

Change 542170 had a related patch set uploaded (by Andrew Bogott; owner: Andrew Bogott):
[operations/puppet@production] nova-fullstack tests: add a test for dns cleanup post-delete

https://gerrit.wikimedia.org/r/542170

gerritbot added a project: Patch-For-Review.Oct 10 2019, 4:42 PM
gerritbot added a comment.Oct 10 2019, 5:58 PM

Change 542170 merged by Andrew Bogott:
[operations/puppet@production] nova-fullstack tests: add a test for dns cleanup post-delete

https://gerrit.wikimedia.org/r/542170

Maintenance_bot removed a project: Patch-For-Review.Oct 10 2019, 6:10 PM
gerritbot added a comment.Oct 10 2019, 7:15 PM

Change 542201 had a related patch set uploaded (by Andrew Bogott; owner: Andrew Bogott):
[operations/puppet@production] cloud puppetmasters: allow nova controllers to use the certmanager account

https://gerrit.wikimedia.org/r/542201

gerritbot added a project: Patch-For-Review.Oct 10 2019, 7:15 PM
gerritbot added a comment.Oct 10 2019, 7:46 PM

Change 542202 had a related patch set uploaded (by Andrew Bogott; owner: Andrew Bogott):
[operations/puppet@production] nova-fullstack: add puppet cert monitoring

https://gerrit.wikimedia.org/r/542202

gerritbot added a comment.Oct 15 2019, 1:58 PM

Change 542201 merged by Andrew Bogott:
[operations/puppet@production] cloud puppetmasters: allow nova controllers to use the certmanager account

https://gerrit.wikimedia.org/r/542201

gerritbot added a comment.Oct 15 2019, 2:11 PM

Change 542202 merged by Andrew Bogott:
[operations/puppet@production] nova-fullstack: add puppet cert monitoring

https://gerrit.wikimedia.org/r/542202

Maintenance_bot removed a project: Patch-For-Review.Oct 15 2019, 3:10 PM
Bstorm triaged this task as Medium priority.Feb 11 2020, 4:21 PM
fnegri edited projects, added cloud-services-team; removed cloud-services-team (Kanban).Jan 18 2023, 7:33 PM
fnegri moved this task from Kanban to Inbox on the cloud-services-team board.
Restricted Application edited projects, added cloud-services-team (Kanban); removed cloud-services-team. · View Herald TranscriptJan 18 2023, 7:33 PM
fnegri edited projects, added cloud-services-team; removed cloud-services-team (Kanban).Jan 18 2023, 7:36 PM
fnegri moved this task from Kanban to Inbox on the cloud-services-team board.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL