Page MenuHomePhabricator
Create Task
Maniphest T375201

wikikube-worker1001 failed to docker pull on two consecutive deployments
Closed, ResolvedPublic
Actions

Description

13:51:05 Started docker pull on k8s nodes
13:55:27 /usr/bin/sudo /usr/local/sbin/mediawiki-image-download 2024-09-19-135040-publish (ran as mwdeploy@wikikube-worker1001.eqiad.wmnet) returned [255]: ssh: connect to host wikikube-worker1001.eqiad.wmnet port 22: Connection timed out

13:55:27 docker_pull_k8s: 100% (in-flight: 0; ok: 431; fail: 1; left: 0)        
13:55:27 1 K8s nodes failed to pull the multiversion image
13:55:27 Finished docker pull on k8s nodes (duration: 04m 21s)
14:06:06 Started docker pull on k8s nodes                                                                                                                                                     
14:10:30 /usr/bin/sudo /usr/local/sbin/mediawiki-image-download 2024-09-19-140541-publish (ran as mwdeploy@wikikube-worker1001.eqiad.wmnet) returned [255]: ssh: connect to host wikikube-worker1001.eqiad.wmnet port 22: Connection timed out                                                                                                                                              
                                                                                                                                                                                              
14:10:30 docker_pull_k8s: 100% (in-flight: 0; ok: 431; fail: 1; left: 0)                                                                                                                      
14:10:30 1 K8s nodes failed to pull the multiversion image                                                                                                                                    
14:10:30 Finished docker pull on k8s nodes (duration: 04m 24s)

No other errors during the rest of the deployment – I’m not sure if that means the deployment to wikikube-worker1001 still succeeded or if Kubernetes was okay with it failing.

Related Objects

Event Timeline

Lucas_Werkmeister_WMDE created this task.Sep 19 2024, 2:13 PM
Restricted Application added a project: DC-Ops. · View Herald TranscriptSep 19 2024, 2:13 PM
Lucas_Werkmeister_WMDE added a comment.Sep 19 2024, 2:13 PM

I have frankly no idea what tags to add to this… ops-eqiad is just a wild guess. But given that it happened twice, it feels worth investigating by someone™.

taavi edited projects, added: serviceops-deprecated; removed: DC-Ops, ops-eqiad.Sep 19 2024, 2:15 PM
taavi added subscribers: akosiaris, taavi.

this probably has something to do with it? /cc @akosiaris

The last Puppet run was at Mon Sep 16 09:50:38 UTC 2024 (4583 minutes ago). Puppet is disabled. alex fooing around - akosiaris
JMeybohm closed this task as Resolved.Sep 19 2024, 2:22 PM
JMeybohm claimed this task.
JMeybohm subscribed.

I think I know what this was about...re-enabled and ran puppet which should have fixed firewall rules for SSH from deploy hosts. Sorry for the trouble!

Lucas_Werkmeister_WMDE added a comment.Sep 19 2024, 2:25 PM

Thanks for unfooing the server ;P

akosiaris added a comment.Sep 19 2024, 2:35 PM

Thanks for fixing it @JMeybohm. For posterity's sake, the "fooing" part was related to T374366 and trying to figure out the race condition(s).

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits