Return-Path: X-Original-To: apmail-brooklyn-dev-archive@minotaur.apache.org Delivered-To: apmail-brooklyn-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 9953410D1B for ; Thu, 27 Nov 2014 13:57:59 +0000 (UTC) Received: (qmail 91127 invoked by uid 500); 27 Nov 2014 13:57:59 -0000 Delivered-To: apmail-brooklyn-dev-archive@brooklyn.apache.org Received: (qmail 91087 invoked by uid 500); 27 Nov 2014 13:57:59 -0000 Mailing-List: contact dev-help@brooklyn.incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@brooklyn.incubator.apache.org Delivered-To: mailing list dev@brooklyn.incubator.apache.org Received: (qmail 91076 invoked by uid 99); 27 Nov 2014 13:57:59 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 27 Nov 2014 13:57:59 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=5.0 tests=ALL_TRUSTED,T_RP_MATCHES_RCVD,WEIRD_PORT X-Spam-Check-By: apache.org Received: from [140.211.11.3] (HELO mail.apache.org) (140.211.11.3) by apache.org (qpsmtpd/0.29) with SMTP; Thu, 27 Nov 2014 13:57:35 +0000 Received: (qmail 90989 invoked by uid 99); 27 Nov 2014 13:57:33 -0000 Received: from mail-relay.apache.org (HELO mail-relay.apache.org) (140.211.11.15) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 27 Nov 2014 13:57:33 +0000 Received: from mail-wi0-f180.google.com (mail-wi0-f180.google.com [209.85.212.180]) by mail-relay.apache.org (ASF Mail Server at mail-relay.apache.org) with ESMTPSA id B3B8D1A0019 for ; Thu, 27 Nov 2014 13:57:19 +0000 (UTC) Received: by mail-wi0-f180.google.com with SMTP id n3so8404773wiv.7 for ; Thu, 27 Nov 2014 05:57:30 -0800 (PST) MIME-Version: 1.0 X-Received: by 10.194.60.45 with SMTP id e13mr15467034wjr.109.1417096650392; Thu, 27 Nov 2014 05:57:30 -0800 (PST) Received: by 10.194.138.69 with HTTP; Thu, 27 Nov 2014 05:57:30 -0800 (PST) In-Reply-To: <850BA4729961CA42B5DA1D2398426259697E1561@USVIESVREXP02.virtustream.local> References: <850BA4729961CA42B5DA1D2398426259697E0FFE@USVIESVREXP02.virtustream.local> <850BA4729961CA42B5DA1D2398426259697E1548@USVIESVREXP02.virtustream.local> <850BA4729961CA42B5DA1D2398426259697E1561@USVIESVREXP02.virtustream.local> Date: Thu, 27 Nov 2014 13:57:30 +0000 Message-ID: Subject: Re: Brooklyn fails to start Openstack instances due to specific network is not selected From: Richard Downer To: Brooklyn dev Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Virus-Checked: Checked by ClamAV on apache.org Elvinas, Sorry for the wait, and sorry that you're still having problems. I have managed to reproduce the problem you're seeing, so I'll investigate some possible fixes and get back to you. Regarding your second question - I know that some location properties can be given in the YAML but I'm not sure what. I'll try and find an answer for that too. Richard. On 24 November 2014 at 08:30, Elvinas Piliponis wrote: > Hello again, > > Hiding second network (removing shared property) allowed to start instanc= e. So it seems network ID is lost somewhere in Brooklyn and does not reach = openstack. > > For the reference: What can be specified in application YAML file? Can I = specify things like image, keyfile, login user, hardware ID in YAML or shou= ld I hardcode those in brooklyn.properties file? > > Thank you > > _________________________________________ > Elvinas Piliponis > > Student=C5=B3 g. 59-B707, LT-51365, Kaunas | Lietuva > Email: elvinas.piliponis@virtustream.com | Mobile: +370 69807947 > >> -----Original Message----- >> From: Elvinas Piliponis >> Sent: 2014 m. lapkri=C4=8Dio 24 d. 10:21 >> To: dev@brooklyn.incubator.apache.org >> Subject: RE: Brooklyn fails to start Openstack instances due to >> specific network is not selected >> >> Hello, >> >> Thanks for response. Unfortunately it did not help. I have tried: >> >> Specify network in brooklyn.preferences (reloaded and restarted >> service): >> As RegionOne/UUID or simply UUID >> >> In YAML >> networks: >> - network: RegionOne/UUID >> Or >> networks: >> - network: UUID >> >> BTW error is different for different users: >> >> Admin user is getting: >> ExecutionException on brooklyn-m8nh-simple-vm3-lv6m-vm-wlls-918: >> java.util.concurrent.ExecutionException: >> org.jclouds.http.HttpResponseException: command: POST >> http://10.12.208.5:8774/v2/7053442c99914d4f8a64c6bc51a96d25/servers >> HTTP/1.1 failed with response: HTTP/1.1 400 null; content: >> [{"badRequest": {"message": "Multiple possible networks found, use a >> Network ID to be more specific.", "code": 400}}] >> >> Non admin user gets: >> ExecutionException on brooklyn-leml-simple-vm3-m9qy-vm-y7sp-810: >> java.util.concurrent.ExecutionException: >> org.jclouds.rest.AuthorizationException: {"forbidden": {"message": "It >> is not allowed to create an interface on external network 83aa077e- >> 0742-4aaa-8774-6ccdc3fd7800", "code": 403}} >> >> If needed I can send full error messages and logs. >> >> I will try to hide public network (although in that case I am wondering >> how would I connect to instance). >> >> Thank you >> >> _________________________________________ >> Elvinas Piliponis >> >> Student=C5=B3 g. 59-B707, LT-51365, Kaunas | Lietuva >> Email: elvinas.piliponis@virtustream.com | Mobile: +370 69807947 >> >> > -----Original Message----- >> > From: Richard Downer [mailto:richard@apache.org] >> > Sent: 2014 m. lapkri=C4=8Dio 21 d. 14:14 >> > To: Brooklyn dev >> > Subject: Re: Brooklyn fails to start Openstack instances due to >> > specific network is not selected >> > >> > Hi Elvinas, >> > >> > Thanks for your question. I've poked around in the source code for >> > both Brooklyn and jclouds. The networkName property is being passed >> > through to the jclouds "network" template option, and it seems that >> jclouds' >> > OpenStack Nova driver is interpreting this value as the network "UUID >> > defined by Neutron". >> > >> > So I think that the solution is to change the "networkName" property >> > in brooklyn.properties to refer to the network by its UUID rather >> than >> > by its name. >> > >> > I don't think any of my available OpenStack instances have multiple >> > networks so I've not yet been able to test this theory, so perhaps >> you >> > could give it a try and let me know if it makes a difference? >> > >> > Richard. >> > >> > >> > On 20 November 2014 15:00, Elvinas Piliponis >> > wrote: >> > > Hello, >> > > >> > > Not sure if I have made something weird, however I am getting >> errors >> > which are explicitly related to selecting Network ID or errors >> > indicates that. >> > > >> > > I am using the following YAML: >> > > name: simple-vm3 >> > > location: openstack >> > > services: >> > > - type: brooklyn.entity.basic.EmptySoftwareProcess >> > > name: VM >> > > provisioning.properties: >> > > minRam: 512 >> > > minCores: 1 >> > > minDisk: 10 >> > > networks: >> > > - network: private >> > > >> > > Brooklyn properties: >> > > brooklyn.location.named.openstack=3Djclouds:openstack- >> > nova:http://IP_ADD >> > > R:5000/v2.0 brooklyn.location.named.openstack.identity=3Dadmin:admin >> > > brooklyn.location.named.openstack.credential=3D******** >> > > brooklyn.location.named.openstack.imageId=3DRegionOne/d5163d69-4b2c- >> > 4269 >> > > -99ad-88506973037f brooklyn.location.named.openstack.keyPair=3Dadmin >> > > brooklyn.location.named.openstack.securityGroups=3Ddefault >> > > >> > >> brooklyn.location.named.openstack.loginUser.privateKeyFile=3D/opt/brookl >> > > yn/admin.pem brooklyn.location.named.openstack.loginUser=3Dfedora >> > > brooklyn.location.named.openstack.hardwareId=3DRegionOne/24b24f68- >> 535a >> > > - >> > 4 >> > > c73-a052-52022240a2e3 >> > > brooklyn.location.named.openstack.networkName=3Dprivate >> > > >> > > >> > > I have attempted to add network definition to the example YAML from >> > Brooklyn web page. It did not help. >> > > >> > > OpenStack is set up to have 2 networks: private and external >> shared, >> > from where Floating IP's are to be assigned. I am able to start >> > instances with admin and non admin user on OpenStack and networking >> > seems to be working. >> > > >> > > >> > > When setting Brooklyn to use normal tenant user, application fails >> > with: >> > > >> > > Failure running task invoking start[locations] on 1 node >> (aBM5rC8q): >> > > org.jclouds.compute.RunNodesException: error running 1 node >> > > group(brooklyn-wnok-simple-vm3-nkqw-vm-bsuf) location(RegionOne) >> > > image(d5163d69-4b2c-4269-99ad-88506973037f) >> > > size(24b24f68-535a-4c73-a052-52022240a2e3) >> > > options({loginUser=3Dfedora, loginPrivateKeyPresent=3Dtrue, >> > > scriptPresent=3Dtrue, >> > > userMetadata=3D{Name=3Dbrooklyn-wnok-simple-vm3-nkqw-vm-bsuf-UcLq}, >> > > autoAssignFloatingIp=3Dfalse, securityGroupNames=3D[default], >> > > keyPairName=3Dbrooklyn, configDrive=3Dfalse}) Execution failures: 1) >> > > ExecutionException on brooklyn-wnok-simple-vm3-nkqw-vm-bsuf-390: >> > > java.util.concurrent.ExecutionException: >> > > org.jclouds.rest.AuthorizationException: {"forbidden": {"message": >> > "It >> > > is not allowed to create an interface on external network >> > > 83aa077e-0742-4aaa-8774-6ccdc3fd7800", "code": 403}} >> > > >> > > According to some knowledge bases this happens when explicit >> network >> > id is not specified in request and shared external network is >> > attempted to be used. Request fails as _Member_ user is not allowed >> to >> > modify external net. >> > > >> > > >> > > If I select to use admin user it fails a litle further and more >> > explicitly. >> > > >> > > Failure running task invoking start[locations] on 1 node >> (bGa2UU8o): >> > > org.jclouds.compute.RunNodesException: error running 1 node >> > > group(brooklyn-gdqq-simple-vm2-eo7v-vm-sswy) location(RegionOne) >> > > image(d5163d69-4b2c-4269-99ad-88506973037f) >> > > size(24b24f68-535a-4c73-a052-52022240a2e3) >> > > options({loginUser=3Dfedora, loginPrivateKeyPresent=3Dtrue, >> > > scriptPresent=3Dtrue, >> > > userMetadata=3D{Name=3Dbrooklyn-gdqq-simple-vm2-eo7v-vm-sswy-Q526}, >> > > autoAssignFloatingIp=3Dfalse, securityGroupNames=3D[default], >> > > keyPairName=3Dadmin, configDrive=3Dfalse}) Execution failures: 1) >> > > ExecutionException on brooklyn-gdqq-simple-vm2-eo7v-vm-sswy-639: >> > > java.util.concurrent.ExecutionException: >> > > org.jclouds.http.HttpResponseException: command: POST >> > > http://10.12.208.5:8774/v2/7053442c99914d4f8a64c6bc51a96d25/servers >> > > HTTP/1.1 failed with response: HTTP/1.1 400 null; content: >> > > [{"badRequest": {"message": "Multiple possible networks found, use >> a >> > > Network ID to be more specific.", "code": 400}}] at >> > > >> > >> com.google.common.util.concurrent.AbstractFuture$Sync.getValue(Abstrac >> > > tFuture.java:299) at >> > > >> > > Any ideas how to specify Network ID? Or am I doing everything wrong >> > way? >> > > >> > > Thank you >> > > >> > > _________________________________________ >> > > Elvinas Piliponis >> > > >> > > Student=C5=B3 g. 59-B707, LT-51365, Kaunas | Lietuva >> > > Email: elvinas.piliponis@virtustream.com | Mobile: +370 69807947 >> > > >> > > The information contained in this electronic mail transmission may >> > > be >> > privileged and confidential, and therefore, protected from >> disclosure. >> > If you have received this communication in error, please notify us >> > immediately by replying to this message and deleting the email and >> its >> > attachments from all computers without copying or disclosing it. >> The information contained in this electronic mail transmission may be >> privileged and confidential, and therefore, protected from disclosure. >> If you have received this communication in error, please notify us >> immediately by replying to this message and deleting the email and its >> attachments from all computers without copying or disclosing it. > The information contained in this electronic mail transmission may be pri= vileged and confidential, and therefore, protected from disclosure. If you = have received this communication in error, please notify us immediately by = replying to this message and deleting the email and its attachments from al= l computers without copying or disclosing it.