Page MenuHomePhabricator
Create Task
Maniphest T343993

Move eqiad thumbor hosts to kubernetes cluster
Closed, ResolvedPublic
Actions

Description

Thumbor's bare metal days are over, and it is time to have any (young) thumbor servers join our kubernetes cluster.

DC-Ops ops-eqiad

  • Physically re-label thumbor1005 to kubernetes1057
  • Physically re-label thumbor1006 to kubernetes1058

serviceops

  • Remove from puppet
  • update netbox
  • Follow the usual new server process

Details

SubjectRepoBranchLines +/-
kubernetes: add new nodesoperations/puppetproduction+14 -0
kubernetes: add new kubernetes nodes to calicooperations/puppetproduction+4 -0
install_server: configure disks for new kubernetes hostsoperations/puppetproduction+1 -1
sites: add new kubernetes hostsoperations/homer/publicmaster+4 -0
site: change kubernetes::worker regex to include ex-thumbor hostsoperations/puppetproduction+1 -9
Customize query in gerrit

Related Objects
Search...

Event Timeline

jijiki renamed this task from Move eqiad thumbor hosts to kubernetes cluster thumbor1005, thumbor1006 to kubernetes1057 and kubernetes1058 to Move eqiad thumbor hosts to kubernetes cluster.Aug 10 2023, 3:29 PM
jijiki created this task.
jijiki added a parent task: T334488: Final steps for fully-Kubernetes Thumbor.
Maintenance_bot added a project: SRE.Aug 10 2023, 3:45 PM
JMeybohm mentioned this in T277876: Reserve resources for system daemons on kubernetes nodes.Aug 21 2023, 8:32 AM
Stashbot mentioned this in T343996: Move codfw thumbor hosts to kubernetes cluster.Aug 21 2023, 2:14 PM

Mentioned in SAL (#wikimedia-operations) [2023-08-21T14:14:21Z] <hnowlan@cumin1001> START - Cookbook sre.puppet.sync-netbox-hiera generate netbox hiera data: "Triggered by cookbooks.sre.dns.netbox: hnowlan: updating records for reuse of thumbor servers for k8s nodes T343996 T343993 - hnowlan@cumin1001"

Stashbot added a comment.Aug 21 2023, 2:15 PM

Mentioned in SAL (#wikimedia-operations) [2023-08-21T14:15:10Z] <hnowlan@cumin1001> END (PASS) - Cookbook sre.puppet.sync-netbox-hiera (exit_code=0) generate netbox hiera data: "Triggered by cookbooks.sre.dns.netbox: hnowlan: updating records for reuse of thumbor servers for k8s nodes T343996 T343993 - hnowlan@cumin1001"

gerritbot added a comment.Aug 21 2023, 2:28 PM

Change 951130 had a related patch set uploaded (by Hnowlan; author: Hnowlan):

[operations/puppet@production] site: change kubernetes::worker regex to include kubernetes105[78]

https://gerrit.wikimedia.org/r/951130

gerritbot added a project: Patch-For-Review.Aug 21 2023, 2:28 PM
gerritbot added a comment.Aug 21 2023, 2:48 PM

Change 951130 merged by Hnowlan:

[operations/puppet@production] site: change kubernetes::worker regex to include ex-thumbor hosts

https://gerrit.wikimedia.org/r/951130

Maintenance_bot removed a project: Patch-For-Review.Aug 21 2023, 3:10 PM
gerritbot added a comment.Aug 22 2023, 10:05 AM

Change 951439 had a related patch set uploaded (by Hnowlan; author: Hnowlan):

[operations/homer/public@master] sites: add new kubernetes hosts

https://gerrit.wikimedia.org/r/951439

gerritbot added a project: Patch-For-Review.Aug 22 2023, 10:05 AM
gerritbot added a comment.Aug 22 2023, 10:19 AM

Change 951442 had a related patch set uploaded (by Hnowlan; author: Hnowlan):

[operations/puppet@production] install_server: configure disks for new kubernetes hosts

https://gerrit.wikimedia.org/r/951442

gerritbot added a comment.Aug 22 2023, 10:47 AM

Change 951439 merged by jenkins-bot:

[operations/homer/public@master] sites: add new kubernetes hosts

https://gerrit.wikimedia.org/r/951439

gerritbot added a comment.Aug 22 2023, 11:04 AM

Change 951442 merged by Hnowlan:

[operations/puppet@production] install_server: configure disks for new kubernetes hosts

https://gerrit.wikimedia.org/r/951442

Maintenance_bot removed a project: Patch-For-Review.Aug 22 2023, 11:10 AM
ops-monitoring-bot added a comment.Aug 22 2023, 11:25 AM

Cookbook cookbooks.sre.hosts.reimage was started by hnowlan@cumin1001 for host kubernetes1057.eqiad.wmnet with OS bullseye

ops-monitoring-bot added a comment.Aug 22 2023, 11:29 AM

Cookbook cookbooks.sre.hosts.reimage was started by hnowlan@cumin1001 for host kubernetes1058.eqiad.wmnet with OS bullseye

ops-monitoring-bot added a comment.Aug 22 2023, 12:22 PM

Cookbook cookbooks.sre.hosts.reimage started by hnowlan@cumin1001 for host kubernetes1058.eqiad.wmnet with OS bullseye executed with errors:

  • kubernetes1058 (FAIL)
    • Removed from Puppet and PuppetDB if present
    • Deleted any existing Puppet certificate
    • Removed from Debmonitor if present
    • Forced PXE for next reboot
    • Host rebooted via IPMI
    • The reimage failed, see the cookbook logs for the details
ops-monitoring-bot added a comment.Aug 22 2023, 12:39 PM

Cookbook cookbooks.sre.hosts.reimage started by hnowlan@cumin1001 for host kubernetes1057.eqiad.wmnet with OS bullseye executed with errors:

  • kubernetes1057 (FAIL)
    • Removed from Puppet and PuppetDB if present
    • Deleted any existing Puppet certificate
    • Removed from Debmonitor if present
    • Forced PXE for next reboot
    • Host rebooted via IPMI
    • Host up (Debian installer)
    • Checked BIOS boot parameters are back to normal
    • Host up (new fresh bullseye OS)
    • Generated Puppet certificate
    • Signed new Puppet certificate
    • Run Puppet in NOOP mode to populate exported resources in PuppetDB
    • The reimage failed, see the cookbook logs for the details
Stashbot added a comment.Aug 22 2023, 2:14 PM

Mentioned in SAL (#wikimedia-operations) [2023-08-22T14:14:43Z] <hnowlan@cumin1001> START - Cookbook sre.puppet.sync-netbox-hiera generate netbox hiera data: "refreshing kubernetes205[56] kubernetes105[78] status T343996 T343993 - hnowlan@cumin1001"

Stashbot added a comment.Aug 22 2023, 2:15 PM

Mentioned in SAL (#wikimedia-operations) [2023-08-22T14:15:48Z] <hnowlan@cumin1001> END (PASS) - Cookbook sre.puppet.sync-netbox-hiera (exit_code=0) generate netbox hiera data: "refreshing kubernetes205[56] kubernetes105[78] status T343996 T343993 - hnowlan@cumin1001"

ops-monitoring-bot added a comment.Aug 22 2023, 2:18 PM

Cookbook cookbooks.sre.hosts.reimage was started by hnowlan@cumin1001 for host kubernetes1057.eqiad.wmnet with OS bullseye

ops-monitoring-bot added a comment.Aug 22 2023, 2:18 PM

Cookbook cookbooks.sre.hosts.reimage was started by hnowlan@cumin1001 for host kubernetes1058.eqiad.wmnet with OS bullseye

ops-monitoring-bot added a comment.Aug 22 2023, 2:50 PM

Cookbook cookbooks.sre.hosts.reimage started by hnowlan@cumin1001 for host kubernetes1057.eqiad.wmnet with OS bullseye completed:

  • kubernetes1057 (WARN)
    • Downtimed on Icinga/Alertmanager
    • Unable to disable Puppet, the host may have been unreachable
    • Removed from Puppet and PuppetDB if present
    • Deleted any existing Puppet certificate
    • Removed from Debmonitor if present
    • Forced PXE for next reboot
    • Host rebooted via IPMI
    • Host up (Debian installer)
    • Checked BIOS boot parameters are back to normal
    • Host up (new fresh bullseye OS)
    • Generated Puppet certificate
    • Signed new Puppet certificate
    • Run Puppet in NOOP mode to populate exported resources in PuppetDB
    • Found Nagios_host resource for this host in PuppetDB
    • Downtimed the new host on Icinga/Alertmanager
    • First Puppet run completed and logged in /var/log/spicerack/sre/hosts/reimage/202308221433_hnowlan_858379_kubernetes1057.out
    • configmaster.wikimedia.org updated with the host new SSH public key for wmf-update-known-hosts-production
    • Rebooted
    • Automatic Puppet run was successful
    • Forced a re-check of all Icinga services for the host
    • Icinga status is optimal
    • Icinga downtime removed
    • Updated Netbox data from PuppetDB
ops-monitoring-bot added a comment.Aug 22 2023, 2:53 PM

Cookbook cookbooks.sre.hosts.reimage started by hnowlan@cumin1001 for host kubernetes1058.eqiad.wmnet with OS bullseye completed:

  • kubernetes1058 (PASS)
    • Removed from Puppet and PuppetDB if present
    • Deleted any existing Puppet certificate
    • Removed from Debmonitor if present
    • Forced PXE for next reboot
    • Host rebooted via IPMI
    • Host up (Debian installer)
    • Checked BIOS boot parameters are back to normal
    • Host up (new fresh bullseye OS)
    • Generated Puppet certificate
    • Signed new Puppet certificate
    • Run Puppet in NOOP mode to populate exported resources in PuppetDB
    • Found Nagios_host resource for this host in PuppetDB
    • Downtimed the new host on Icinga/Alertmanager
    • First Puppet run completed and logged in /var/log/spicerack/sre/hosts/reimage/202308221436_hnowlan_858601_kubernetes1058.out
    • configmaster.wikimedia.org updated with the host new SSH public key for wmf-update-known-hosts-production
    • Rebooted
    • Automatic Puppet run was successful
    • Forced a re-check of all Icinga services for the host
    • Icinga status is optimal
    • Icinga downtime removed
    • Updated Netbox data from PuppetDB
gerritbot added a comment.Aug 22 2023, 3:01 PM

Change 951522 had a related patch set uploaded (by Hnowlan; author: Hnowlan):

[operations/puppet@production] kubernetes: add new kubernetes nodes to calico

https://gerrit.wikimedia.org/r/951522

gerritbot added a project: Patch-For-Review.Aug 22 2023, 3:01 PM
gerritbot added a comment.Aug 22 2023, 3:08 PM

Change 951524 had a related patch set uploaded (by Hnowlan; author: Hnowlan):

[operations/puppet@production] kubernetes: add new nodes

https://gerrit.wikimedia.org/r/951524

gerritbot added a comment.Aug 22 2023, 3:15 PM

Change 951522 merged by Hnowlan:

[operations/puppet@production] kubernetes: add new kubernetes nodes to calico

https://gerrit.wikimedia.org/r/951522

gerritbot added a comment.Aug 22 2023, 3:18 PM

Change 951524 merged by Hnowlan:

[operations/puppet@production] kubernetes: add new nodes

https://gerrit.wikimedia.org/r/951524

Maintenance_bot removed a project: Patch-For-Review.Aug 22 2023, 3:29 PM
hnowlan updated the task description. (Show Details)Aug 22 2023, 4:55 PM
Papaul assigned this task to VRiley-WMF.Aug 28 2023, 10:44 PM
Papaul moved this task from Backlog to Lower Priority Items on the ops-eqiad board.
VRiley-WMF added a comment.Aug 29 2023, 1:37 PM

Updated physical labeling as requested.

Jclark-ctr closed this task as Resolved.Aug 29 2023, 6:55 PM
Jclark-ctr updated the task description. (Show Details)
Jclark-ctr closed subtask T344598: Decommission thumbor100[12] as Resolved.Sep 5 2023, 2:48 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits