Bug #1707953 “openstack actions don't work from workflow created...” : Bugs : Mistral

Renat Akhmerov (rakhmerov) on 2017-08-03

Changed in mistral:
milestone:	pike-3 → pike-rc1

Revision history for this message

Ritesh Paiboina (rsritesh) wrote on 2017-08-08:

#1

Hi,
I am getting the following failed error: ""Could not find trust: 45a4cbc7777d4441abef9b16eb8b3696 "" ,

is it the same error you are getting too ? ??

My Workflow:
----------------------------------------------------------------
version: "2.0"

test_cron_trigger:
type: direct

  tasks:
    test:
      action: cinder.volumes_list

----------------------------------------------------------------

mistral workflow-create 1707953.yaml

mistral cron-trigger-create test-cron test_cron_trigger --first-time '2017-08-08 09:24'

ritesh@smiley:~$ mistral execution-get-output 662a9a75-96c1-43e4-bb46-45e9450ed235
{
"result": "Failure caused by error in tasks: test\n\n test [task_ex_id=02b74b5b-dc6b-4b35-ba63-f4b0c24bb927] -> Failed to run action [action_ex_id=fb8738f9-22b0-4ae9-a09e-adf261299e4b, action_cls='<class 'mistral.actions.action_factory.CinderAction'>', attributes='{u'client_method_name': u'volumes.list'}', params='{}']\n CinderAction.volumes.list failed: Could not find trust: 45a4cbc7777d4441abef9b16eb8b3696. (HTTP 404) (Request-ID: req-18efe81b-cbe2-4145-9964-64110b6d7e66)\n [action_ex_id=fb8738f9-22b0-4ae9-a09e-adf261299e4b, idx=0]: Failed to run action [action_ex_id=fb8738f9-22b0-4ae9-a09e-adf261299e4b, action_cls='<class 'mistral.actions.action_factory.CinderAction'>', attributes='{u'client_method_name': u'volumes.list'}', params='{}']\n CinderAction.volumes.list failed: Could not find trust: 45a4cbc7777d4441abef9b16eb8b3696. (HTTP 404) (Request-ID: req-18efe81b-cbe2-4145-9964-64110b6d7e66)\n"
}

Adriano Petrich (apetrich) on 2017-08-22

Changed in mistral:
assignee:	nobody → Adriano Petrich (apetrich)

Revision history for this message

Adriano Petrich (apetrich) wrote on 2017-08-23:

#2

Download full text (11.2 KiB)

I think there were two issues and one of them was fixed.

I tried it today as it stands and it fails, but with

2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic [-] Failed to process cron trigger CronTrigger {'workflow_params': {}, 'name': u'test-cron', 'workflow_name': u'test_cron_trigger', 'pattern': u'0 0 30 2 0', 'created_at': '2017-08-23 08:16:24', 'updated_at': None, 'workflow_input': {}, 'workflow_params_hash': u'4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945', 'workflow_id': u'32a4a3f2-e0c8-4ede-8a8c-676a85cb00fc', 'first_execution_time': '2017-08-23 08:21:00', 'remaining_executions': 1, 'workflow_input_hash': u'4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945', 'scope': u'private', 'project_id': u'1f180b5ba33449b4af981495062379e7', 'id': u'7f2c745d-521b-4529-92a3-76e9ee1ac665', 'trust_id': u'ef593465c37542899f76ea9ba04402a3', 'next_execution_time': '2017-08-23 08:21:00'}: AuthorizationFailure: Authentication cannot be scoped to multiple targets. Pick one of: project, domain, trust or unscoped
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic Traceback (most recent call last):
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/mistral/services/periodic.py", line 46, in process_cron_triggers_v2
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic trigger.trust_id, trigger.project_id
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/mistral/services/security.py", line 65, in create_context
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic client = keystone.client_for_trusts(trust_id)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/mistral/utils/openstack/keystone.py", line 141, in client_for_trusts
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic return _admin_client(trust_id=trust_id)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/mistral/utils/openstack/keystone.py", line 105, in _admin_client
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic trust_id=trust_id
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/keystoneclient/v3/client.py", line 246, in __init__
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic self.authenticate()
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/positional/__init__.py", line 101, in inner
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic return wrapped(*args, **kwargs)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/keystoneclient/httpclient.py", line 581, in authenticate
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic resp = self.get_raw_token_from_identity_service(**kwargs)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic File "/usr/lib/python2.7/site-packages/keystoneclient/v3/client.py", line 322, in get_raw_token_from_identity_service
2017-08-23 09:05:19.361 59...

I think there were two issues and one of them was fixed.

I tried it today as it stands and it fails, but with

2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic [-] Failed to process cron trigger CronTrigger {'workflow_params': {}, 'name': u'test-cron', 'workflow_name': u'test_cron_trigger', 'pattern': u'0 0 30 2 0', 'created_at': '2017-08-23 08:16:24', 'updated_at': None, 'workflow_input': {}, 'workflow_params_hash': u'4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945', 'workflow_id': u'32a4a3f2-e0c8-4ede-8a8c-676a85cb00fc', 'first_execution_time': '2017-08-23 08:21:00', 'remaining_executions': 1, 'workflow_input_hash': u'4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945', 'scope': u'private', 'project_id': u'1f180b5ba33449b4af981495062379e7', 'id': u'7f2c745d-521b-4529-92a3-76e9ee1ac665', 'trust_id': u'ef593465c37542899f76ea9ba04402a3', 'next_execution_time': '2017-08-23 08:21:00'}: AuthorizationFailure: Authentication cannot be scoped to multiple targets. Pick one of: project, domain, trust or unscoped
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic Traceback (most recent call last):
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/mistral/services/periodic.py", line 46, in process_cron_triggers_v2
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     trigger.trust_id, trigger.project_id
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/mistral/services/security.py", line 65, in create_context
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     client = keystone.client_for_trusts(trust_id)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/mistral/utils/openstack/keystone.py", line 141, in client_for_trusts
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     return _admin_client(trust_id=trust_id)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/mistral/utils/openstack/keystone.py", line 105, in _admin_client
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     trust_id=trust_id
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/keystoneclient/v3/client.py", line 246, in __init__
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     self.authenticate()
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/positional/__init__.py", line 101, in inner
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     return wrapped(*args, **kwargs)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/keystoneclient/httpclient.py", line 581, in authenticate
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     resp = self.get_raw_token_from_identity_service(**kwargs)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/keystoneclient/v3/client.py", line 322, in get_raw_token_from_identity_service
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     return plugin.get_auth_ref(self.session)
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic   File "/usr/lib/python2.7/site-packages/keystoneclient/auth/identity/v3/base.py", line 161, in get_auth_ref
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic     _('Authentication cannot be scoped to multiple targets. Pick '
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic AuthorizationFailure: Authentication cannot be scoped to multiple targets. Pick one of: project, domain, trust or unscoped
2017-08-23 09:05:19.361 5984 ERROR mistral.services.periodic 
2017-08-23 09:05:19.361 5984 DEBUG keystoneclient.v3.client [-] Authorization failed. get_raw_token_from_identity_service /usr/lib/python2.7/site-packages/keystoneclient/v3/client.py:324
2017-08-23 09:05:19.362 5984 ERROR mistral.services.periodic [-] Failed to process cron trigger CronTrigger {'workflow_params': {}, 'name': u'test-cron2', 'workflow_name': u'test_cron_trigger', 'pattern': u'*/5 * * * *', 'created_at': '2017-08-23 08:33:21', 'updated_at': None, 'workflow_input': {}, 'workflow_params_hash': u'4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945', 'workflow_id': u'32a4a3f2-e0c8-4ede-8a8c-676a85cb00fc', 'first_execution_time': None, 'remaining_executions': None, 'workflow_input_hash': u'4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945', 'scope': u'private', 'project_id': u'1f180b5ba33449b4af981495062379e7', 'id': u'54289179-1aa9-47ca-ab97-05cf4da7e8ea', 'trust_id': u'4defe917619d4bc385604900a5485440', 'next_execution_time': '2017-08-23 08:35:00'}: AuthorizationFailure: Authentication cannot be scoped to multiple targets. Pick one of: project, domain, trust or unscoped

That is a known bug that has a fix released (but not promoted as I write this) 
https://review.openstack.org/#/c/493550/

when I applied that it still failed but on a cinder issue:

2017-08-23 09:25:01.085 12925 DEBUG mistral.services.scheduler [req-b53e580a-b2f7-47b5-845b-5c84f8b9c073 ddd512cbbfea45c387a9c3c25ef8b029 1f180b5ba33449b4af981495062379e7 - - -] Processing next delayed call. [ID=20395a4a-3486-44a0-970c-104bb4bcfe45, factory_method_path=None, target_method_name=mistral.engine.workflow_handler._check_and_complete, method_arguments={u'wf_ex_id': u'1bffd42c-ca69-422e-bbc3-ce38f3c7dfc8'}] run_delayed_calls /usr/lib/python2.7/site-packages/mistral/services/scheduler.py:140
2017-08-23 09:25:01.104 12925 INFO workflow_trace [req-b53e580a-b2f7-47b5-845b-5c84f8b9c073 ddd512cbbfea45c387a9c3c25ef8b029 1f180b5ba33449b4af981495062379e7 - - -] Workflow 'test_cron_trigger' [RUNNING -> ERROR, msg=Failure caused by error in tasks: test

test [task_ex_id=98dd5c30-8600-4b17-8c53-b79de6d6f86c] -> Failed to run action [action_ex_id=03e36066-81db-4683-9dd6-ec2200c1f8de, action_cls='<class 'mistral.actions.action_factory.CinderAction'>', attributes='{u'client_method_name': u'volumes.list'}', params='{}']
 CinderAction.volumes.list failed: No endpoints found [service_name=None, service_type=volumev2, region_name=None]
    [action_ex_id=03e36066-81db-4683-9dd6-ec2200c1f8de, idx=0]: Failed to run action [action_ex_id=03e36066-81db-4683-9dd6-ec2200c1f8de, action_cls='<class 'mistral.actions.action_factory.CinderAction'>', attributes='{u'client_method_name': u'volumes.list'}', params='{}']
 CinderAction.volumes.list failed: No endpoints found [service_name=None, service_type=volumev2, region_name=None]
] (execution_id=1bffd42c-ca69-422e-bbc3-ce38f3c7dfc8)

but when I tried with the cinder client it failed as well

cinder list
ERROR: publicURL endpoint for volumev3 service not found

so instead I changed the workflow to work with heat stack-list
---------
version: '2.0'

test_cron_trigger:
  tasks:
    test:
      action: heat.stacks_list

-----------

heat stack-list
WARNING (shell) "heat stack-list" is deprecated, please use "openstack stack list" instead
+--------------------------------------+------------+-----------------+----------------------+--------------+----------------------------------+
| id                                   | stack_name | stack_status    | creation_time        | updated_time | project                          |
+--------------------------------------+------------+-----------------+----------------------+--------------+----------------------------------+
| f7813924-9d40-4560-968b-53ff8a743643 | overcloud  | CREATE_COMPLETE | 2017-08-22T16:55:13Z | None         | 1f180b5ba33449b4af981495062379e7 |
+--------------------------------------+------------+-----------------+----------------------+--------------+----------------------------------+

Created the workflow and trigger
mistral workflow-create foo.yaml
mistral cron-trigger-create test-cron3 test_cron_trigger --pattern "*/5 * * * *"

and that worked

engine.log:
2017-08-23 09:35:01.422 12925 INFO workflow_trace [req-b53e580a-b2f7-47b5-845b-5c84f8b9c073 ddd512cbbfea45c387a9c3c25ef8b029 1f180b5ba33449b4af981495062379e7 - - -] Workflow 'test_cron_trigger' [RUNNING -> SUCCESS, msg=None] (execution_id=1a4761b3-0170-4b0b-bc63-028f52abc4a8)

mistral execution-get 22cffa93-9a67-4c10-9b09-2229e1e5aa5a
+-------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Field             | Value                                                                                                                                                                                                                 |
+-------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| ID                | 22cffa93-9a67-4c10-9b09-2229e1e5aa5a                                                                                                                                                                                  |
| Workflow ID       | 4596423a-d828-4db1-b457-c8f419115a72                                                                                                                                                                                  |
| Workflow name     | test_cron_trigger                                                                                                                                                                                                     |
| Description       | {"triggered_by": {"type": "cron_trigger", "id": "5e3e3928-3740-4b89-9ace-871393e6b5bf", "name": "test-cron3"}, "description": "Workflow execution created by cron trigger '(5e3e3928-3740-4b89-9ace-871393e6b5bf)'."} |
| Task Execution ID | <none>                                                                                                                                                                                                                |
| State             | SUCCESS                                                                                                                                                                                                               |
| State info        | None                                                                                                                                                                                                                  |
| Created at        | 2017-08-23 09:39:59                                                                                                                                                                                                   |
| Updated at        | 2017-08-23 09:40:01                                                                                                                                                                                                   |
+-------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+

Changed in mistral:
status:	Confirmed → Fix Committed

Renat Akhmerov (rakhmerov) on 2017-08-29

Changed in mistral:
milestone:	pike-rc1 → pike-rc2

Renat Akhmerov (rakhmerov) on 2017-09-06

Changed in mistral:
milestone:	pike-rc2 → queens-1

Nikolay Makhotkin (nmakhotkin) on 2017-09-18

Changed in mistral:
status:	Fix Committed → Fix Released

Mistral

openstack actions don't work from workflow created by trigger

Bug Description

Other bug subscribers

Remote bug watches