[02:37] <wallyworld> hpidcock: "juju-run python3" doesn't work with upgrade-charm PR
[02:37] <wallyworld> so still something to follow up on
[02:51] <hpidcock> wallyworld: can you link me the charm you are using and how you are deploying it please on the bug
[02:52] <wallyworld> will do, just reviewing PR, and also have a zoom meeting at 1 so after that
[02:52] <wallyworld> it's just my mariadb-k8s charm
[02:56] <thumper> babbageclunk, wallyworld: just thinking... does backup work with k8s controllers? And if so, do we have any idea how we're going to restore?
[02:56] <thumper> I was thinking about this when thinking about mongo 4.0 restore
[02:57] <babbageclunk> thumper: I haven't tried backup on a k8s controller
[02:57] <wallyworld> backup should work. restore no, falls into the HA category for next cycle
[02:57] <thumper> wallyworld: have you discussed with babbageclunk the mongo 4.0 restore question?
[02:58] <wallyworld> yes
[02:58] <babbageclunk> Was trying to think about how k8s restore would work - the core restore is the same, but the stuff around the outside (stopping and starting agents and rewriting configs) is all different
[02:58] <wallyworld> exasctly
[02:58]  * thumper nods
[02:58] <thumper> probably want to have a check somewhere
[02:58] <thumper> to say "sorry"
[02:59] <babbageclunk> yeah true - I'll add that
[02:59] <babbageclunk> I mean, it'll be hard to follow the directions anyway - you can't scp the backup and juju-restore to the controller machine
[03:00] <thumper> :)
[03:00] <thumper> yeah... we'll need another whole set of instructions for restoring a k8s controller
[03:43] <thumper> babbageclunk: any thoughts on the last comment in this bug? https://bugs.launchpad.net/bugs/1858693
[03:43] <mup> Bug #1858693: ANARCHY!!!!!!! Entirely leaderless application spotted in the wild <juju:Triaged> <https://launchpad.net/bugs/1858693>
[03:46] <babbageclunk> thumper: yeah - that sounds like an entirely different problem. (Or I guess the same symptoms caused by something totally different.)
[03:46]  * thumper nods
[03:46] <babbageclunk> thumper: reading some code...
[03:46] <thumper> why would it timeout enqueing?
[03:47] <babbageclunk> I think that's coming from the raft apply command - presumably the raft engine loop is blocked somehow?
[03:47] <thumper> hmm...
[05:06] <tlm> hpidcock: https://github.com/juju/juju/pull/11443 if you got 5 minutes
[05:08] <hpidcock> sure
[05:09] <tlm> wallyworld: got time for HO ?
[05:12] <wallyworld> tlm: just finishing a PR, give me 5
[05:13] <tlm> ll
[05:13] <tlm> kk
[05:15] <wallyworld> hpidcock: finally +1 on PR. i think we'll need a followup to deal with the new local attributes and controller state
[05:16] <wallyworld> tlm: ready for HO now if you're free
[05:17] <tlm> k
[05:17] <wallyworld> hang on, stupid 2fa etc
[05:23] <hpidcock> wallyworld: the local state attributes are resolver local state not operation local state. Resolver local state is not saved.
[05:27] <wallyworld> hpidcock: ah no worries
[06:07] <hpidcock> wallyworld: when you have a spare two seconds https://github.com/juju/juju-db-snap/pull/1
[06:07] <wallyworld> sure
[06:08] <wallyworld> hpidcock: so 4.0.18 was officially the latest?
[06:08] <wallyworld> and AGPL not SSL?
[06:08] <hpidcock> yep, but either we choose 17 or 18 and need to test it
[06:09] <hpidcock> its confusing because SSL is the mongo license but we include both mongo and mongo-tools (which is apache)
[06:09] <wallyworld> yeah
[06:09] <wallyworld> IANAL :-)
[06:10] <hpidcock> well the charm itself has a license
[06:10] <hpidcock> sorry the snap
[06:10] <hpidcock> the snap code is under whatever license we want
[06:10] <wallyworld> tup, just about to say that
[06:11] <hpidcock> technically the snap contains more than just mongo stuff
[06:11] <hpidcock> openssl etc
[08:05] <stickupkid> manadart, I got it working, just wrapping up the tests for a review
[08:19] <stickupkid> here is a casual observation, if you're creating mocks for anything outside of your package, but within juju, then you're doing it wrong
[08:27] <manadart> stickupkid: Will look in a mo'. OTP with thumper.
[08:27] <achilleasa> stickupkid: any interesting examples of this happening?
[08:28] <stickupkid> achilleasa, as in, doing it badly (got lots of those), doing it well, not so much
[08:28] <achilleasa> stickupkid: more interested in the doing it badly ;-)
[08:30] <stickupkid> achilleasa, anything to do with networking common, model backend...
[08:32] <stickupkid> achilleasa, if you're taking on a bigger interface from somewhere else, then you're tied to every other place that uses it. You know longer have a vertical boundary and are locked stepped to that other component/entity etc.
[08:35] <achilleasa> stickupkid: ah, so you are basically talking about dupping (or defining a restricted version of it) the interface in your package and mocking that?
[08:37] <stickupkid> achilleasa, yeap
[08:37] <stickupkid> achilleasa, my usual spiel
[09:52] <manadart> stickupkid: You can get 3 shims down to 2 by pushing the raw state shim into environs/space like this: https://pastebin.canonical.com/p/fRT68XZhSQ/
[09:52] <manadart> But that damn modelmanager backend is a bastard.
[09:53] <stickupkid> manadart, yeah, I've not got there yet, as I'm writing tests for spaces reload API
[09:53] <stickupkid> manadart, I've got rid of my horrid life hack as well, which has made me really happy
[09:54] <elox> Good morning/evening.
[09:55] <elox> I've bumped into a problem I can't understand if it is a bug or something I can resolve for myself. I've sent a discourse post about it here: https://discourse.juju.is/t/error-cert-pool-creation-failed-cannot-parse-certificate/2927  ... hope to get some help on it so I can get back my controller.
[09:56] <elox> In short, I get this: "ERROR cert pool creation failed: cannot parse certificate..."
[09:57] <elox> Followed by...... asn1: syntax error: data truncated
[10:16] <elox> Right, I don't know what has happened. But my resolution to ^ was to remove the controller entry from controller.yaml and then log back in as admin: "juju login -u admin 192.168.2.12:17070 -c snowflake-maas"   After being prompted with a password challenge and a fingerprint accept, the controller is again available to my client.
[10:17] <achilleasa> elox: looks like you were hitting https://github.com/openssl/openssl/issues/1381
[10:18] <achilleasa> elox:  openssl asn1parse -inform der -strparse 40 -in $yourcert manages to parse the ASN1 data (fails without the strparse flag)
[10:20] <elox> I'll have a look and update my post on discourse.
[10:20] <elox> Thanx!
[10:21] <manadart> achilleasa: Can you review this small one?
[10:21] <manadart> https://github.com/juju/juju/pull/11445
[10:22] <achilleasa> manadart: looking
[10:23] <elox> @achilleasa: https://discourse.juju.is/t/error-cert-pool-creation-failed-cannot-parse-certificate/2927/2
[10:29] <achilleasa> elox: great that you could get back the controller without having to do any cert surgery ;-)
[10:36] <elox> achilleasa: Yeah, the horror.
[10:39] <stickupkid> manadart, updated in my last commit
[10:39] <elox> Finally I was able to test the latest version of my Nextcloud charm on my own system and feel comfortable releasing it to stable: https://jujucharms.com/u/erik-lonroth/nextcloud/4
[10:40] <manadart> stickupkid: OK.
[13:01] <achilleasa> stickupkid: rick_h proposed change for fixing the weird defaults when parsing charm meta: https://github.com/juju/charm/pull/309
[14:24] <achilleasa> can someone please take a look at https://github.com/juju/juju/pull/11446?
[15:12] <stickupkid> manadart, ping you now or in the morning about the new stuff?
[15:32] <manadart> stickupkid: Morning. I've EoD'd
[15:32] <stickupkid> manadart, ha
[15:37] <achilleasa> stickupkid: re your wording comment; should I change it to 'as'?
[15:37] <stickupkid> achilleasa, yeah, that's better
[15:43] <stickupkid> achilleasa, tick
[15:44] <achilleasa> stickupkid: still need to patch some more stupid tests with the correct limit expectations :-(
[15:44] <stickupkid> achilleasa, 9 year old code, 9 years old
[15:45] <stickupkid> achilleasa, it's like clippy, "do you want to limit this?" <- no clippy, NO!
[15:46] <achilleasa> btw, what is the correct command for bootstraping a focal instance?
[15:46] <achilleasa> shouldn't --boostrap-series=focal --force do the trick?
[15:46] <stickupkid> achilleasa, you need --config image-stream=daily
[15:47] <stickupkid> achilleasa, not released yet, so you need to point the image-stream to the right place
[15:47] <achilleasa> aha! thanks
[17:35] <achilleasa> rick_h: got a focal with 4.0.18 from the candidate snap https://paste.ubuntu.com/p/kpNNWSQ9VV/. Will work on getting the conf settings through (bit harder since they need to be injected into the agent conf) but should have a PR ready for review by EOD tomorrow
[17:41] <rick_h> achilleasa:  sounds like grat progress ty!
[18:40] <elox> I'm trying to help a friend adding AWS credentials to JAAS, and we can't do it. It complains about a credential tag. https://pasteboard.co/J3Xx4Pr.png
[18:40] <elox> We have been trying to follow the guide, but it simply doesn't work
[18:44] <elox> Can this be related to already existing credentials.yaml for him ?
[19:21] <pmatulis> elox, which guide exactly?