Launchpad itself

preflight check for librarian access on appservers

Bug #678375 reported by Robert Collins
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Launchpad itself
Fix Released
High
Benji York
Launchpad itself 11.01

Bug Description

Working on RT 41379, Tom reckons that we're good to go but we're changing a system that is rather static and heavyweight to change. I'd like to have a small script we can run both now, and when bringing up new machines, to check that they have the needed access.

It needs to establish that the librarian's restricted and public upload ports work, and the restricted private download port works (because we use that from appservers). It needs to let us check that things were uploaded appropriately from a machine that can access the public librarian (because we don't necessarily let that work from all sppservers directly).

So, I think it can be very simple:
- do a private-upload
- download from private-download
- do a public-upload
- report a url which can be used to check the public uploaded content is accessible (e.g. sysadmins can throw it at wget locally)

The last step is belts and braces, the first three are the crucial steps.

Related branches

lp:~benji/launchpad/bug-678375
Graham Binns (community): Approve (code)
Diff: 213 lines (+199/-0)
3 files modified
lib/canonical/librarian/smoketest.py (+64/-0)
lib/canonical/librarian/tests/test_smoketest.py (+109/-0)
utilities/smoke-test-librarian.py (+26/-0)
Tom Haddon (mthaddon)
tags: added: canonical-losa-lp
Revision history for this message
Tom Haddon (mthaddon) wrote :

We also want to be able to specify the URL and port to use for each one, so that if/when we're switching those, we can do so without needing to rewrite the script.

Revision history for this message
Robert Collins (lifeless) wrote : Re: [Bug 678375] Re: preflight check for librarian access on appservers

On Mon, Nov 22, 2010 at 11:46 PM, Tom Haddon <email address hidden> wrote:
> We also want to be able to specify the URL and port to use for each one,
> so that if/when we're switching those, we can do so without needing to
> rewrite the script..

I don't think we need that - all we need is for it to source it from
the config : then when we're reconfiguring we can:
 - update the config on a temporary lp dir
 - test
 - trigger a deploy

If the script returns non-zero in the case of error, then we could
make running this be part of the production deploy cycle, and that
would let us just:
 - change the configs
 - trigger a deploy
 - any machines that fail will stop, and we can fix.

Of course, we'd want our high availalability story and spare capacity
to be a bit more robust first ;)

Revision history for this message
Gary Poster (gary) wrote :

Do I understand correctly that this is blocking?

Is this a Foundations bug because you are asking the Foundations team to schedule it, or because the Foundations bucket is the generic LP bucket that we have?

Changed in launchpad-foundations:
status: New → Triaged
importance: Undecided → High
Revision history for this message
Robert Collins (lifeless) wrote :

On Tue, Nov 23, 2010 at 1:31 PM, Gary Poster <email address hidden> wrote:
> Do I understand correctly that this is blocking?

Its blocking moving to a HA librarian configuration, yes.

> Is this a Foundations bug because you are asking the Foundations team to
> schedule it, or because the Foundations bucket is the generic LP bucket
> that we have?

I will try and get to it before my leave starts but cannot guarantee
that. If I don't, I would really appreciate it if someone in
Foundations could take it on. It should be pretty shallow.

-Rob

Revision history for this message
Gary Poster (gary) wrote :

> I will try and get to it before my leave starts but cannot guarantee
> that. If I don't, I would really appreciate it if someone in
> Foundations could take it on. It should be pretty shallow.

Ack. Not sure when your leave starts; will check with Francis.

Revision history for this message
Tom Haddon (mthaddon) wrote :

Please update RT#41379 when this is complete - I'll mark that RT as incomplete in the meantime.

Thanks, Tom

Benji York (benji)
Changed in launchpad-foundations:
assignee: nobody → Benji York (benji)
Benji York (benji)
Changed in launchpad-foundations:
status: Triaged → In Progress
Revision history for this message
Benji York (benji) wrote :

The script (utilities/smoke-test-librarian.py) in the related branch (lp:~benji/launchpad/bug-678375) should fit the bill. It's been reviewed already but I'd appreciate anyone else interested in this bug taking a look at it.

Revision history for this message
Launchpad QA Bot (lpqabot) wrote : Bug fixed by a commit

Fixed in stable r12032 <http://bazaar.launchpad.net/~launchpad-pqm/launchpad/stable/revision/12032>.

tags: added: qa-needstesting
Changed in launchpad-foundations:
status: In Progress → Fix Committed
Benji York (benji)
tags: added: qa-untestable
removed: qa-needstesting
Curtis Hovey (sinzui)
Changed in launchpad:
status: Fix Committed → Fix Released
Revision history for this message
Tom Haddon (mthaddon) wrote :

I've just run this on one of the appservers, and got the following:

launchpad@soybean:/srv/launchpad.net/production/launchpad$ ./utilities/smoke-test-librarian.py
adding a private file to the librarian...
retrieving private file from http://lplibrarian.internal/61153941/smoke-test-file
adding a public file to the librarian...
retrieving public file from http://launchpadlibrarian.net/61153942/smoke-test-file

So this bug report ties into RT#41379 in which we're trying to put into place load balanced frontends for uploads and private downloads using the following hostnames on port 80 in each case:

lplibrarian-private-download.internal
lplibrarian-private-upload.internal
lplibrarian-public-upload.internal

How can I use this script to test those? Would I need to update the lp-production-configs branch, or is there some way to ask it run using specific hostnames?

Revision history for this message
Robert Collins (lifeless) wrote : Re: [Bug 678375] Re: preflight check for librarian access on appservers

Prepare and stage an lp tree with the candidate config; run the
script. - It pulls everything from the config system.

Revision history for this message
Tom Haddon (mthaddon) wrote :

Would my config diff be https://pastebin.canonical.com/41362/ ? I'd like to remove references to mizuho.c.c altogether, but not sure why there's a "restricted_download_url" and "restricted_download_host", for instance, or why we need to specify the upload_host and download_host. I'm also not sure where to specify the public upload URL (http://lplibrarian-public-upload.internal) - would that be upload_host?

Revision history for this message
Tom Haddon (mthaddon) wrote :

After IRC discussions with Rob, we've decided to ensure the three hosts are listening on different ports (for public and private uploads and private downloads). So I think the config I want now is https://pastebin.canonical.com/41364/, but what I'm still not sure about is where to specify the port for the public upload.

Revision history for this message
Robert Collins (lifeless) wrote :

Oh, thats because the prod configs don't set everything.

you can always look in configs/schema-lazr.conf to see the avialable options.

# Port number Librarian listens for storage requests on.
# datatype: int
upload_port: 9090

Curtis Hovey (sinzui)
Changed in launchpad:
milestone: none → 11.01
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.