As you can see, nothing about the net.bridge.*; so I suspect this is done outside of TripleO.
Maybe in the RDO nodepool image or just the default in CentOS7. Or maybe done by zuul when deploying.
We should collect the cloud providers where we hit that failure and if there is a pattern (e.g. always RDO cloud or always RAX), then we should probably fix it.
sysctl settings managed by Puppet are visible in this hieradata:
https:/ /logs.rdoprojec t.org/openstack -periodic- 24hr/opendev. org/openstack/ tripleo- ci/master/ periodic- tripleo- ci-centos- 7-ovb-1ctlr_ 2comp-featurese t020-rocky/ e9d92b4/ logs/overcloud- novacompute- 1/etc/puppet/ hieradata/ service_ configs. json.txt. gz
Pasting here:
"sysctl_ settings" : {
"fs.inotify. max_user_ instances" : {
"value" : 1024
"fs.suid_ dumpable" : {
"value" : 0
"kernel. dmesg_restrict" : {
"value" : 1
"kernel. pid_max" : {
"value" : 1048576
"net.core. netdev_ max_backlog" : {
"value" : 10000
"net.ipv4. conf.all. arp_accept" : {
"value" : 1
"net.ipv4. conf.all. arp_notify" : {
"value" : 1
"net.ipv4. conf.all. log_martians" : {
"value" : 1
"net.ipv4. conf.all. secure_ redirects" : {
"value" : 0
"net.ipv4. conf.all. send_redirects" : {
"value" : 0
"net.ipv4. conf.default. accept_ redirects" : {
"value" : 0
"net.ipv4. conf.default. log_martians" : {
"value" : 1
"net.ipv4. conf.default. secure_ redirects" : {
"value" : 0
"net.ipv4. conf.default. send_redirects" : {
"value" : 0
"net.ipv4. ip_forward" : {
"value" : 1
"net.ipv4. ip_nonlocal_ bind": {
"value" : 0
"net.ipv4. neigh.default. gc_thresh1" : {
"value" : 1024
"net.ipv4. neigh.default. gc_thresh2" : {
"value" : 2048
"net.ipv4. neigh.default. gc_thresh3" : {
"value" : 4096
"net.ipv4. tcp_keepalive_ intvl": {
"value" : 1
"net.ipv4. tcp_keepalive_ probes" : {
"value" : 5
"net.ipv4. tcp_keepalive_ time": {
"value" : 5
"net.ipv6. conf.all. accept_ ra": {
"value" : 0
"net.ipv6. conf.all. accept_ redirects" : {
"value" : 0
"net.ipv6. conf.all. autoconf" : {
"value" : 0
"net.ipv6. conf.all. disable_ ipv6": {
"value" : 0
"net.ipv6. conf.all. ndisc_notify" : {
"value" : 1
"net.ipv6. conf.default. accept_ ra": {
"value" : 0
"net.ipv6. conf.default. accept_ redirects" : {
"value" : 0
"net.ipv6. conf.default. autoconf" : {
"value" : 0
"net.ipv6. conf.default. disable_ ipv6": {
"value" : 0
"net.ipv6. conf.lo. disable_ ipv6": {
"value" : 0
"net.ipv6. ip_nonlocal_ bind": {
"value" : 0
"net.netfilter .nf_conntrack_ max": {
"value" : 500000
"net.nf_ conntrack_ max": {
"value" : 500000
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
},
}
},
As you can see, nothing about the net.bridge.*; so I suspect this is done outside of TripleO.
Maybe in the RDO nodepool image or just the default in CentOS7. Or maybe done by zuul when deploying.
We should collect the cloud providers where we hit that failure and if there is a pattern (e.g. always RDO cloud or always RAX), then we should probably fix it.