)]}'
{"/PATCHSET_LEVEL":[{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"eb5710c39e8f5faa65874007c854fde7e006a8ba","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"e008ebb9_1abb8fd8","updated":"2024-03-10 09:29:16.000000000","message":"Hmm, it seems we have bad configuration in kolla-ansible, for now setting workflow to -1. I will abandon in case config fix will be enough.","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":9816,"name":"Takashi Kajinami","email":"kajinamit@oss.nttdata.com","username":"kajinamit"},"change_message_id":"4766958bee2135e246873828328e02c673849d87","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"53e92d46_e182bccf","updated":"2024-03-10 11:00:23.000000000","message":"The specific change it intentional to allow users to enable auth/ssl in Sentinel. Technically we can update the behavior to support enabling auth/ssl in redis and disabling these in sentinel, but IMO enabling auth/ssl consistently in both layers is a better approach.","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"172c7e95555e36c601d7075fadbe14781a9506ff","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"3351b82c_cc9c5f8e","in_reply_to":"0896569b_f75e3f48","updated":"2024-03-10 22:24:37.000000000","message":"I can confirm that when I setup auth also for sentinel, everything is working for now - abandoning. Thank you for your help ! \n\nKolla-ansible change https://review.opendev.org/c/openstack/kolla-ansible/+/912341","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":9816,"name":"Takashi Kajinami","email":"kajinamit@oss.nttdata.com","username":"kajinamit"},"change_message_id":"d16313a9e035c413d3072df542d84604e466d122","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":1,"id":"aee1f303_db1dcb25","in_reply_to":"2ac573f6_4f86d602","updated":"2024-03-10 12:16:31.000000000","message":"s/authpass/requirepass/","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"d1ac3cc0757fca3b7aeaf8c5116eadea579bf083","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":1,"id":"9b9829a9_43e30906","in_reply_to":"532fc770_1ee218c0","updated":"2024-03-10 12:06:22.000000000","message":"No it\u0027s still failing I would say \n\nCinder-volume log:\n\nhttps://storage.bhs.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_29c/912341/1/check/kolla-ansible-ubuntu-cephadm/29cb000/primary/logs/kolla/cinder/cinder-volume.txt\n\nCinder-volume conf\n\nhttps://storage.bhs.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_29c/912341/1/check/kolla-ansible-ubuntu-cephadm/29cb000/primary/logs/kolla_configs/cinder-volume/cinder.conf\n\nRedis conf with set password for default user : \nhttps://storage.bhs.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_29c/912341/1/check/kolla-ansible-ubuntu-cephadm/29cb000/primary/logs/kolla_configs/redis/redis.conf\n\nReview : \n\nhttps://review.opendev.org/c/openstack/kolla-ansible/+/912341 which is dependent on  https://review.opendev.org/c/openstack/kolla/+/912340 (upper constraints not updated yet - it\u0027s installing tooz 6.0.1 instead of 6.0.0)\n\nSo what am I still missing  ? \n\nThank you","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"9b3ae6e399d5f228020209f8f4785491dd270528","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":1,"id":"532fc770_1ee218c0","in_reply_to":"53e92d46_e182bccf","updated":"2024-03-10 11:51:21.000000000","message":"Yep, agree I\u0027ve already fixed probably by https://review.opendev.org/c/openstack/kolla-ansible/+/912341 in k-a","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":9816,"name":"Takashi Kajinami","email":"kajinamit@oss.nttdata.com","username":"kajinamit"},"change_message_id":"5a8c8c199a7637731e96b3e96909207fcac7435c","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":1,"id":"0896569b_f75e3f48","in_reply_to":"96b3100b_7842fc3f","updated":"2024-03-10 14:37:29.000000000","message":"Hmm... I didn\u0027t really expect users may attempt to enable auth using redis-sentinel, because the existing implementation support authentication only partially (it did not allow us to enable auth for sentinel).\n\nI aimed to require password both in redis and redis-sentinel, but I noticed that gnocchi still relies on the old pattern(require password for only redis). I can fix it later, but assuming that change may not appear in the version available in distro soon, we probably have to support that pattern.\n\nI\u0027ll prepare a change to tooz and taskflow to restore the previous behavior so that the current usage in kolla works by default. Note that the new redis backend support in oslo.cache requires auth for both in case sentinel is used. Probably we should also fix it...","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":9816,"name":"Takashi Kajinami","email":"kajinamit@oss.nttdata.com","username":"kajinamit"},"change_message_id":"c6d962fd76c8bf88a686fb39dbcae788179beb85","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":1,"id":"2ac573f6_4f86d602","in_reply_to":"9b9829a9_43e30906","updated":"2024-03-10 12:15:45.000000000","message":"I looked into https://storage.bhs.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_29c/912341/1/check/kolla-ansible-ubuntu-cephadm/29cb000/primary/logs/kolla_configs/redis-sentinel/redis.conf (the config file for sentinel) but it does not contain authpass, to enable password authentication.","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"6af13e728728beca2603db9b50094541aec0da5a","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":1,"id":"d75f4480_cdfcc0bc","in_reply_to":"aee1f303_db1dcb25","updated":"2024-03-10 13:20:31.000000000","message":"it is in redis https://storage.bhs.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_29c/912341/1/check/kolla-ansible-ubuntu-cephadm/29cb000/primary/logs/kolla_configs/redis/redis.conf \n\nBut weird is that locally on my stack it\u0027s working","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"},{"author":{"_account_id":9816,"name":"Takashi Kajinami","email":"kajinamit@oss.nttdata.com","username":"kajinamit"},"change_message_id":"8bba908247c31f3c8ee0103687e45e3f64b3312d","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":1,"id":"96b3100b_7842fc3f","in_reply_to":"d75f4480_cdfcc0bc","updated":"2024-03-10 14:17:01.000000000","message":"I don\u0027t fully understand how config files are managed in kolla-ansible deployments but IIUC that\u0027s the file for redis, not redis-sentinel, right ? The latest tooz tries to apply the consistent auth/ssl for both redis and redis-sentinel. If you use separate files for these services then you have to enable auth in sentinel as well.","commit_id":"b4ee5c3dd7125652436a072978b3846020e91713"}]}