Launchpad needs to switch to internal keyserver

I think the following oopses are related: OOPS-387B888, OOPS-387A884, OOPS-387D906

What is needed before Launchpad can use the new server? Soyuz has been using it for the past 48 hours.

We need to modify the current production configuration and roll it out, it's better to wait Stuart to be back next week (we already have an rollout scheduled).

Simply "s\keyserver.ubuntu.com\keyserver.internal" in the relevant config (as I did for ftpmaster), it will replace the gpghandler.host parameter.

But I suspect we will move the problem from the external keyserver to the internal one.
Do we have evidences that the overload on the former keyserver was coming from external sources ?
Because if it was internally generated, LP main app is going to eat keyserver capacity when Soyuz need it or vice-versa and we will end up facing the same situation.

The current server is running one of our most resource-hungry public services in addition to the keyserver. I am confident that the performance on the new server will be greatly improved.

I am happy to wait for the scheduled rollout, and will be glad to help out if you need to test the new keyserver in the meantime.

Hi Nick,

Right, based on you comments I think it's worth to try the internal keyserver for LP app as well.

I won't be here next week but I think matsubara can handle the configuration update and coordinate with stuart to get it rolled.

Thanks for arranging all this.

It was pointed out to me today that the key registration process requires that the user upload specifically to keyserver.ubuntu.com and then poke launchpad into retrieving it. Since the keyserver software makes no guarantees about the speed of replication, this creates an irritating race to the internal keyserver.

So when this switch is made, care must be taken to keep keyserver.ubuntu.com in the registration code.

Fix committed in RF 4489