Page MenuHomePhabricator
Create Task
Maniphest T92324

Review Jenkins isolation architecture with Antoine
Closed, ResolvedPublic
Actions

Description

The CI test runs needs to be run in isolated/disposable sandboxes which is the Continuous-Integration-Scaling project. I wrote an architecture document and now need a peer review / refining with members of the SRE team.

Since the architecture will reuse the OpenStack wmflabs infrastructure, one of the labs engineers would be ideal.

We would need additional help from our preferred Debian Developers to review the packaging of two python softwares: Zuul and Nodepool.

From a quick discussion with Ops-RelEng liaison @Andrew, it seems the architecture backend should aim at using Debian/Jessie which will surely simplify the packaging/dependency work.

https://www.mediawiki.org/wiki/Continuous_integration/Architecture/Isolation

Event Timeline

hashar created this task.Mar 10 2015, 10:17 PM
hashar raised the priority of this task from to Needs Triage.
hashar updated the task description. (Show Details)
hashar added a project: acl*sre-team.
hashar added subscribers: hashar, Andrew, greg, zeljkofilipin.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 10 2015, 10:17 PM
hashar added a project: Continuous-Integration-Scaling.Mar 10 2015, 10:20 PM
hashar moved this task from Backlog to In-progress on the Continuous-Integration-Scaling board.
hashar added a comment.Mar 13 2015, 3:34 PM

I have poked ops list about it.

Krinkle updated the task description. (Show Details)Mar 18 2015, 4:42 AM
Krinkle set Security to None.
greg added projects: Blocked-on-Operations, Scrum-of-Scrums.Mar 18 2015, 5:33 PM
yuvipanda added subscribers: mark, faidon, Joe.Mar 18 2015, 5:51 PM
dduvall moved this task from Scheduled to blocked by Operations on the Scrum-of-Scrums board.Mar 18 2015, 5:55 PM
mobrovac subscribed.Mar 18 2015, 6:08 PM
hashar added a comment.Mar 24 2015, 4:42 PM

I have lost track of whom I should review this with or whether any action is needed on my side. The task is listed on ops team meeting but not sure how to progress from there.

chasemp subscribed.Mar 25 2015, 6:31 PM

Stepping out on a limb here but I think this has the potential, or is probable, to become a large Ops requiring project of Quarterly goal proportions. That is the reason I haven't yet tried to throw in on this, not because I want to leave you hanging, but because this is going to be a large thing that should get dedicated resources. To give due diligence review of the documents and design strategy, and overall problem set is a big ask. Not a bad or unreasonable one, but it seems like a "This is one of CI's quarterly goals and we need allocated Ops support to make it happen".

hashar added a comment.Mar 27 2015, 10:20 PM

Thanks Chase, I guess the project seems bigger than it really is for ops. I am looking to get:

  • one or two servers added to labs subnet
  • the networks flow validated since I am not sure what is allowed to speak to what
  • validate the usage of the OpenStack API (boot VMs, possibly upload new images)
  • and of course support from some ops :-)

I am currently creating Debian packages for Zuul (almost done) and NodePool. All the software configuration is done via puppet manifests written by upstream/our team. So definitely some more review time needed there.

I am probably underestimating ops involvement, hence this task asking to review the architecture with your team and estimate the work that needs to be done.

fgiunchedi triaged this task as High priority.Apr 1 2015, 10:49 AM
fgiunchedi subscribed.
hashar added a comment.Apr 10 2015, 10:30 PM

We had three meeting already with @chasemp @Andrew and @hashar . We are exchanging on a weekly basis.

Andrew lowered the priority of this task from High to Medium.Apr 11 2015, 9:29 PM
Andrew removed a project: Blocked-on-Operations.
akosiaris removed a project: Scrum-of-Scrums.May 27 2015, 5:52 PM
hashar moved this task from In-progress to Backlog on the Continuous-Integration-Scaling board.Sep 22 2015, 6:27 PM
Restricted Application added a subscriber: Matanya. · View Herald TranscriptSep 22 2015, 6:27 PM
hashar closed this task as Resolved.Apr 19 2016, 1:47 PM
hashar claimed this task.

Got solved/agreed etc and we eventually have Nodepool installed on a machine in the labs support network.

Restricted Application added a subscriber: TerraCodes. · View Herald TranscriptApr 19 2016, 1:47 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits