Page MenuHomePhabricator
Create Task
Maniphest T331613

Migrate apt repository to bookworm
Closed, ResolvedPublic
Actions

Description

It's currently on Buster. While moving to a new OS, we should also address T317178 alongside.

In Bookworm reprepro was updated to a fork which has merged various patches. It might also make sense to migrate to Bookworm rightaway (even though it's not yet final)

Details

Show related patches Customize query in gerrit

Related Objects
Search...

Event Timeline

MoritzMuehlenhoff created this task.Mar 9 2023, 11:28 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 9 2023, 11:28 AM
MoritzMuehlenhoff added a subtask: T317178: Move apt to private IPs + CDN.Mar 9 2023, 11:28 AM
MoritzMuehlenhoff renamed this task from Migrate apt repository to bullseye or bookworm to Migrate apt repository to bookworm.Oct 5 2023, 7:18 AM
MoritzMuehlenhoff claimed this task.
MoritzMuehlenhoff triaged this task as Medium priority.
gerritbot added a comment.Oct 10 2023, 6:54 AM

Change 964844 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] aptrepo::rsync: Don't setup rsync for empty list of secondary servers

https://gerrit.wikimedia.org/r/964844

gerritbot added a project: Patch-For-Review.Oct 10 2023, 6:54 AM
gerritbot added a comment.Oct 10 2023, 12:16 PM

Change 964844 merged by Muehlenhoff:

[operations/puppet@production] aptrepo::rsync: Don't setup rsync for empty list of secondary servers

https://gerrit.wikimedia.org/r/964844

Maintenance_bot removed a project: Patch-For-Review.Oct 10 2023, 12:31 PM
gerritbot added a comment.Oct 10 2023, 1:09 PM

Change 964900 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[labs/private@master] Add dummy keytabs for apt1002/apt2002

https://gerrit.wikimedia.org/r/964900

gerritbot added a project: Patch-For-Review.Oct 10 2023, 1:09 PM
gerritbot added a comment.Oct 11 2023, 10:31 AM

Change 964900 merged by Muehlenhoff:

[labs/private@master] Add dummy keytabs for apt1002/apt2002

https://gerrit.wikimedia.org/r/964900

Maintenance_bot removed a project: Patch-For-Review.Oct 11 2023, 10:32 AM
Muehlenhoff mentioned this in rLPRIcbee952d0b99: Add dummy keytabs for apt1002/apt2002.Oct 11 2023, 10:34 AM
gerritbot added a comment.Oct 11 2023, 10:55 AM

Change 965101 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Assign apt_repo role to apt1002

https://gerrit.wikimedia.org/r/965101

gerritbot added a project: Patch-For-Review.Oct 11 2023, 10:55 AM
gerritbot added a comment.Oct 11 2023, 1:56 PM

Change 965101 merged by Muehlenhoff:

[operations/puppet@production] Assign apt_repo role to apt1002

https://gerrit.wikimedia.org/r/965101

Maintenance_bot removed a project: Patch-For-Review.Oct 11 2023, 2:11 PM
gerritbot added a comment.Oct 11 2023, 2:16 PM

Change 965170 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Extend acmechief config for new apt hosts

https://gerrit.wikimedia.org/r/965170

gerritbot added a project: Patch-For-Review.Oct 11 2023, 2:16 PM
gerritbot added a comment.Oct 12 2023, 8:56 AM

Change 965170 merged by Muehlenhoff:

[operations/puppet@production] Extend acmechief config for new apt hosts

https://gerrit.wikimedia.org/r/965170

Maintenance_bot removed a project: Patch-For-Review.Oct 12 2023, 9:10 AM
gerritbot added a comment.Nov 2 2023, 9:57 AM

Change 971117 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Setup rsync between apt1001/apt1002

https://gerrit.wikimedia.org/r/971117

gerritbot added a project: Patch-For-Review.Nov 2 2023, 9:57 AM
gerritbot added a comment.Nov 2 2023, 11:59 AM

Change 971117 merged by Muehlenhoff:

[operations/puppet@production] Setup rsync between apt1001/apt1002

https://gerrit.wikimedia.org/r/971117

Maintenance_bot removed a project: Patch-For-Review.Nov 2 2023, 12:10 PM
MoritzMuehlenhoff closed subtask T357306: Clarify status of various directories in /srv on apt1001 as Resolved.Feb 13 2024, 9:46 AM
gerritbot added a comment.Feb 21 2024, 12:36 PM

Change 1005498 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] acmechief: Remove obsolete entries from apt record

https://gerrit.wikimedia.org/r/1005498

gerritbot added a project: Patch-For-Review.Feb 21 2024, 12:36 PM
gerritbot added a comment.Feb 21 2024, 1:04 PM

Change 1005498 merged by Muehlenhoff:

[operations/puppet@production] acmechief: Remove obsolete entries from apt record

https://gerrit.wikimedia.org/r/1005498

ops-monitoring-bot added a comment.Feb 21 2024, 1:18 PM

Cookbook cookbooks.sre.hosts.reimage was started by jmm@cumin2002 for host apt2002.wikimedia.org with OS bookworm

Maintenance_bot removed a project: Patch-For-Review.Feb 21 2024, 1:30 PM
ops-monitoring-bot added a comment.Feb 21 2024, 2:05 PM

Cookbook cookbooks.sre.hosts.reimage started by jmm@cumin2002 for host apt2002.wikimedia.org with OS bookworm executed with errors:

  • apt2002 (FAIL)
    • Removed from Puppet and PuppetDB if present and deleted any certificates
    • Removed from Debmonitor if present
    • Forced PXE for next reboot
    • Host rebooted via gnt-instance
    • Host up (Debian installer)
    • Add puppet_version metadata to Debian installer
    • Set boot media to disk
    • Host up (new fresh bookworm OS)
    • Generated Puppet certificate
    • Signed new Puppet certificate
    • Run Puppet in NOOP mode to populate exported resources in PuppetDB
    • Found Nagios_host resource for this host in PuppetDB
    • Downtimed the new host on Icinga/Alertmanager
    • First Puppet run completed and logged in /var/log/spicerack/sre/hosts/reimage/202402211334_jmm_2872487_apt2002.out
    • configmaster.wikimedia.org updated with the host new SSH public key for wmf-update-known-hosts-production
    • Rebooted
    • The reimage failed, see the cookbook logs for the details,You can also try typing "install-console" apt2002.wikimedia.org to get a root shellbut depending on the failure this may not work.
Stashbot added a comment.Feb 21 2024, 2:20 PM

Mentioned in SAL (#wikimedia-operations) [2024-02-21T14:20:53Z] <jmm@cumin2002> START - Cookbook sre.puppet.sync-netbox-hiera generate netbox hiera data: "new apt server in codfw - jmm@cumin2002 - T331613"

Stashbot added a comment.Feb 21 2024, 2:22 PM

Mentioned in SAL (#wikimedia-operations) [2024-02-21T14:22:04Z] <jmm@cumin2002> END (PASS) - Cookbook sre.puppet.sync-netbox-hiera (exit_code=0) generate netbox hiera data: "new apt server in codfw - jmm@cumin2002 - T331613"

gerritbot added a comment.Feb 21 2024, 3:24 PM

Change 1005524 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Explicitly configure apt2002 for Puppet 7

https://gerrit.wikimedia.org/r/1005524

gerritbot added a project: Patch-For-Review.Feb 21 2024, 3:24 PM
gerritbot added a comment.Feb 21 2024, 3:32 PM

Change 1005524 merged by Muehlenhoff:

[operations/puppet@production] Explicitly configure apt2002 for Puppet 7

https://gerrit.wikimedia.org/r/1005524

Maintenance_bot removed a project: Patch-For-Review.Feb 21 2024, 4:31 PM
gerritbot added a comment.Feb 22 2024, 11:49 AM

Change 1005731 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Make apt2002 a repository server

https://gerrit.wikimedia.org/r/1005731

gerritbot added a project: Patch-For-Review.Feb 22 2024, 11:49 AM
gerritbot added a comment.Feb 22 2024, 2:41 PM

Change 1005731 merged by Muehlenhoff:

[operations/puppet@production] Make apt2002 a repository server

https://gerrit.wikimedia.org/r/1005731

Maintenance_bot removed a project: Patch-For-Review.Feb 22 2024, 3:31 PM
gerritbot added a comment.Mar 5 2024, 4:22 PM

Change 1008893 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Point apt discovery records to apt1002/apt2002 (new bookworm hosts)

https://gerrit.wikimedia.org/r/1008893

gerritbot added a project: Patch-For-Review.Mar 5 2024, 4:22 PM
gerritbot added a comment.Mar 6 2024, 7:37 AM

Change 1008893 merged by Muehlenhoff:

[operations/puppet@production] Point apt discovery records to apt1002/apt2002 (new bookworm hosts)

https://gerrit.wikimedia.org/r/1008893

gerritbot added a comment.Mar 6 2024, 8:21 AM

Change 1009199 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Add an motd for the old buster reposority server

https://gerrit.wikimedia.org/r/1009199

gerritbot added a comment.Mar 6 2024, 8:48 AM

Change 1009199 merged by Muehlenhoff:

[operations/puppet@production] Add an motd for the old buster reposority server

https://gerrit.wikimedia.org/r/1009199

Maintenance_bot removed a project: Patch-For-Review.Mar 6 2024, 9:30 AM
gerritbot added a comment.Mar 6 2024, 3:21 PM

Change 1009281 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Move the old apt servers to insetup::buster role

https://gerrit.wikimedia.org/r/1009281

gerritbot added a project: Patch-For-Review.Mar 6 2024, 3:21 PM

Change 1009282 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Move nginx/Puppet settings for new apt hosts to the role Hiera data

https://gerrit.wikimedia.org/r/1009282

gerritbot added a comment.Mar 7 2024, 6:55 AM

Change 1009281 merged by Muehlenhoff:

[operations/puppet@production] Move the old apt servers to insetup::buster role

https://gerrit.wikimedia.org/r/1009281

Stashbot added a comment.Mar 7 2024, 7:06 AM

Mentioned in SAL (#wikimedia-operations) [2024-03-07T07:06:17Z] <moritzm> revoke Kerberos host principals for apt1001/apt2001 T331613

gerritbot added a comment.Mar 7 2024, 7:27 AM

Change 1009282 merged by Muehlenhoff:

[operations/puppet@production] Move nginx/Puppet settings for new apt hosts to the role Hiera data

https://gerrit.wikimedia.org/r/1009282

Maintenance_bot removed a project: Patch-For-Review.Mar 7 2024, 7:30 AM
gerritbot added a comment.Mar 20 2024, 8:37 AM

Change 1012996 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] aptrepo: Remove obsolete migration code

https://gerrit.wikimedia.org/r/1012996

gerritbot added a project: Patch-For-Review.Mar 20 2024, 8:37 AM
gerritbot added a comment.Mar 20 2024, 9:48 AM

Change 1012996 merged by Muehlenhoff:

[operations/puppet@production] aptrepo: Remove obsolete migration code

https://gerrit.wikimedia.org/r/1012996

Maintenance_bot removed a project: Patch-For-Review.Mar 20 2024, 10:31 AM
ops-monitoring-bot added a comment.Mar 22 2024, 9:39 AM

cookbooks.sre.hosts.decommission executed by jmm@cumin2002 for hosts: apt2001.wikimedia.org

  • apt2001.wikimedia.org (PASS)
    • Downtimed host on Icinga/Alertmanager
    • Found Ganeti VM
    • VM shutdown
    • Started forced sync of VMs in Ganeti cluster codfw to Netbox
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
    • VM removed
    • Started forced sync of VMs in Ganeti cluster codfw to Netbox
gerritbot added a comment.Mar 22 2024, 9:52 AM

Change #1013509 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Remove puppet references to apt1001/2001

https://gerrit.wikimedia.org/r/1013509

gerritbot added a project: Patch-For-Review.Mar 22 2024, 9:52 AM
gerritbot added a comment.Mar 22 2024, 10:03 AM

Change #1013511 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[labs/private@master] Remove obsolete dummy key tabs

https://gerrit.wikimedia.org/r/1013511

gerritbot added a comment.Mar 22 2024, 10:06 AM

Change #1013511 merged by Muehlenhoff:

[labs/private@master] Remove obsolete dummy key tabs

https://gerrit.wikimedia.org/r/1013511

ops-monitoring-bot added a comment.Mar 22 2024, 10:06 AM

cookbooks.sre.hosts.decommission executed by jmm@cumin2002 for hosts: apt1001.wikimedia.org

  • apt1001.wikimedia.org (PASS)
    • Downtimed host on Icinga/Alertmanager
    • Found Ganeti VM
    • VM shutdown
    • Started forced sync of VMs in Ganeti cluster eqiad to Netbox
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
    • VM removed
    • Started forced sync of VMs in Ganeti cluster eqiad to Netbox
Muehlenhoff mentioned this in rLPRIfb2989489e3c: Remove obsolete dummy key tabs.Mar 22 2024, 10:07 AM
gerritbot added a comment.Mar 22 2024, 10:18 AM

Change #1013509 merged by Muehlenhoff:

[operations/puppet@production] Remove puppet references to apt1001/2001

https://gerrit.wikimedia.org/r/1013509

MoritzMuehlenhoff closed this task as Resolved.Mar 22 2024, 3:34 PM

apt.wikimedia.org is now running on two Bookworm VMs (apt1002 and apt2002), using the new/forked reprepro. The repository metadata/database got imported into the new setup. Wiki documentation was updated and the old VMs decommissioned.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL