[09:58:43] <gehel>	 lunch
[10:43:19] <dcausse>	 lunch
[12:21:04] <gehel>	 dcausse: I release the parent pom
[12:33:58] <dcausse>	 gehel: thanks!
[13:00:56] <inflatador>	 greetings
[13:03:21] <dcausse>	 o/
[13:14:11] <inflatador>	 <o/
[13:14:37] <inflatador>	 do we need to be concerned about these airflow alert emails, subject is like "<TaskInstance: drop_old_data_daily.drop_subgraph_mapping_and_metrics_partitions"?
[13:14:54] <gehel>	 inflatador: yes!
[13:15:20] <gehel>	 Either it is a problem that needs to be addressed, or it is noise that needs to be reduced.
[13:19:30] <inflatador>	 Indeed. So what do you think: problem, or noise?
[13:31:04] <dcausse>	 I think it's a known issue but yes we need to address it at some point
[13:31:17] <dcausse>	 but we might need help from data-eng on this one
[13:38:04] <dcausse>	 it's related to Erik's last comment here: https://phabricator.wikimedia.org/T303831#8101961
[13:38:33] <dcausse>	 lots of new spotbugs warnings with the new parent pom
[13:39:05] <dcausse>	 and one that I can't seem to understand/fix nor silence THROWS_METHOD_THROWS_CLAUSE_BASIC_EXCEPTION
[13:46:21] <inflatador>	 ah, that comment sounds familiar
[14:21:53] <inflatador>	 do you think we should reach out to data-eng? Maybe wait until e-bernhardson gets in and ask his opinion?
[14:47:59] <gehel>	 dcausse: about THROWS_METHOD_THROWS_CLAUSE_BASIC_EXCEPTION, do you have a link to the code?
[14:48:25] <gehel>	 dcausse: I just wrote T313813, do you have time to review / comment / correct?
[14:48:26] <stashbot>	 T313813: API Gateway to provide authorization and capacity management for W[CD]QS - https://phabricator.wikimedia.org/T313813
[14:48:46] <dcausse>	 sure
[14:49:56] <dcausse>	 gehel: it's this method: https://gerrit.wikimedia.org/r/plugins/gitiles/wikimedia-event-utilities/+/refs/heads/master/eventutilities/src/main/java/org/wikimedia/eventutilities/core/event/JsonEventGenerator.java#168
[14:50:39] <dcausse>	 I wonder if it's catch (ExecutionException | UncheckedExecutionException e)
[14:52:12] <dcausse>	 or perhaps the lambda of the guava Cache
[14:53:36] <dcausse>	 perhaps because of Callable: https://docs.oracle.com/javase/8/docs/api/java/util/concurrent/Callable.html#call-- 
[14:55:03] <gehel>	 also not super clear to me why this is raised :/
[14:55:29] <dcausse>	 I think it prevents you from writing a method that "throws Exception"
[14:55:43] <dcausse>	 but here it's a contract I follow (Callable)
[14:55:55] <dcausse>	 seems like a false positive to me
[14:58:05] <dcausse>	 might be related: https://github.com/spotbugs/spotbugs/issues/2040
[14:59:37] <dcausse>	 trying with spotbug 4.7.1
[15:00:48] <gehel>	 or should we just ignore that rule globally?
[15:01:22] <dcausse>	 perhaps?
[15:01:45] <gehel>	 SD / Search meeting starting: https://meet.google.com/rjx-uhsq-zqs
[15:01:53] <gehel>	 ebernhardson: ^
[15:02:05] <ebernhardson>	 sec
[15:42:39] <inflatador>	 ejoseph I'm handing off note-taking to you, LMK if this is not cool
[15:43:58] <ejoseph>	 It's cool for me
[15:57:06] <gehel>	 dinner time!
[16:00:50] <inflatador>	 workout, back in ~30m
[16:02:09] * ebernhardson needs a better reindexing process than printing out the non _doc indices alphabetically and retrying the ones that come earlier in the alphabet than where the reindexer currently is
[16:14:29] <ebernhardson>	 8.2k indices migrated at least, another 2k to go
[16:18:42] <dcausse>	 errand
[16:34:53] <inflatador>	 back
[16:44:14] <inflatador>	 I'm writing a simple python script to grab real-time ES info (active cluster members, OS, row/rack etc) from  /_nodes , does anyone have something like that already? Otherwise I'll whip something up
[16:50:31] <dcausse>	 inflatador: if this is this for monitoring there's a python script in puppet IIRC
[16:51:16] <inflatador>	 dcausse it's for monitoring progress of the bullseye/elastic upgrades, but I'll check puppet
[16:51:28] <inflatador>	 hit me up if you have a link
[16:52:23] <ebernhardson>	 inflatador: probably thinking of modules/prometheus/files/usr/local/bin/prometheus-wmf-elasticsearch-exporter.py in puppet, but it doesn't happen to talk to _nodes
[16:52:44] <ebernhardson>	 inflatador: or maybe modules/elasticsearch/files/es-tool.py (should maybe be dropped as unused these days?)
[16:53:05] <ebernhardson>	 es-tool was pre-cookbooks/spicerack
[16:53:32] <ebernhardson>	 i think we had salt stack back then, i don't remember anyone being a huge fan though :P
[16:54:19] <inflatador>	 Yeah, saltstack was the first config mgmt tool I used...let's just say I moved on pretty quickly
[16:54:47] <inflatador>	 I had a friend who moved to Utah to work there, instant regrets
[16:55:43] <dcausse>	 perhaps curl + jq might be doable?
[16:57:20] <inflatador>	 that would work, but it's easier (for me at least) to format stuff in Python. I think I'll give it a shot
[16:57:29] <inflatador>	 then g-ehel can help me refactor ;P
[17:00:07] <dcausse>	 good point! :)
[17:10:05] * ebernhardson doesn't know how to feel about puppet templating using `elsif`.  As if `else if` and `elif` weren't enough variants :P
[17:10:11] <ebernhardson>	 and elseif in php i guess
[17:14:16] <inflatador>	 It's just like people naming their kid Ashleigh or Linzee or whatever, just to be different ;)
[17:19:42] <ebernhardson>	 lol, i suppose so :)
[17:23:49] <inflatador>	 ryankemper did you see the bug from joe in mediawiki_security? We need to pull elastic2049 out of pybal permanently. Do you know if that's conftool, or do we have to make a puppet patch as well?
[17:41:12] <inflatador>	 update: decommissioned elastic2049 with confctl (ref https://wikitech.wikimedia.org/wiki/Conftool#Decommission_a_server ). I do believe we'll need a puppet patch as well
[17:41:20] <inflatador>	 In the meantime, lunch! Back in ~1 h
[17:52:35] <dcausse>	 dinner
[18:01:22] <ryankemper>	 Back now
[18:01:36] <ryankemper>	 inflatador: thanks for looking at 2049
[18:23:39] <inflatador>	 back
[18:23:48] <inflatador>	 ryankemper np
[18:29:31] <gehel>	 Looks like Dominic is blocked on T307391. We already estimated, could we move this forward sooner rather than later? (cc: ryankemper, inflatador, ebernhardson)
[18:29:31] <stashbot>	 T307391: Enable CORS support for WCQS SPARQL endpoint access - https://phabricator.wikimedia.org/T307391
[18:30:35] <ebernhardson>	 gehel: i looked at it yesterday, i can add some random headers but not sure where is appropriate. Does the primary html need the header? is it the responses from wikidata (they come from different servers). Do we attach the header to everything regardless? (feels hacky, but probably works)
[18:30:44] <ebernhardson>	 err, the responses from wdqs
[18:31:21] <gehel>	 I'm not sure :/
[18:32:08] <ebernhardson>	 i suppose i also got a bit confused because they say it works for wdqs, but i couldn't find where the header being returned there (my initial thought was return it wherever query.wikidata.org does)
[18:33:28] <ebernhardson>	 oh i guess i wasn't paying enough attention before, i see now that query.wikidata.org/sparql returns the header.  will have to see why commons-query.wikimedia.org/sparql doesn't
[18:33:58] <ebernhardson>	 hmm, no wcqs does return it there already. So must be something else
[18:34:45] <ebernhardson>	 is it failing in the auth flow prior to CORS? Because a known limitation of the existing auth is you cannot auth from an xmlhttprequest
[18:34:55] <ebernhardson>	 (the browser rejects it)
[18:36:03] <ebernhardson>	 i can add those notes to the ticket i guess, but the problem with authing through redirect bounces during xmlhttprequest is unrelated to cors iirc
[18:37:09] <inflatador>	 gehel ryankemper exact cmd I ran: ` confctl decommission --host elastic2049`
[18:37:45] <inflatador>	 `WARNING:conftool.announce:conftool action : set/pooled=inactive; selector: name=elastic2049`
[18:44:40] <inflatador>	 decom ticket: https://phabricator.wikimedia.org/T313842
[19:44:09] <ebernhardson>	 nginx is an eternal footgun, just like apache :P "There could be several add_header directives. These directives are inherited from the previous level if and only if there are no add_header directives defined on the current level."
[19:44:49] <ebernhardson>	 add a caching header? now we drop your x-served-by header :P
[19:57:49] <inflatador>	 never a good sign when there's a separate module for what seems like basic web server functionality https://github.com/openresty/headers-more-nginx-module#readme
[20:07:49] <inflatador>	 joe also noted that wdqs1004 is critical and icinga, I don't have any alerts in my email, does anyone else?
[20:08:08] <inflatador>	 critical **in** icinga, that is. It's possible I'm accidentally filtering it
[20:08:58] <ebernhardson>	 hmm, not sure about that one. I have puppet disabled on all wcqs instances right now, but thats unrelated
[20:09:34] <inflatador>	 looks like it's tossing out 503s, at least according to icinga
[20:09:59] <ebernhardson>	 hmm, does pybal auto-depool it? if not we should
[20:10:24] <ebernhardson>	 logstash says 1004 is throttling all the requests
[20:10:48] <inflatador>	 ebernhardson I don't know how to read https://config-master.wikimedia.org/pybal/eqiad/wdqs . "enabled" doesn't tell me if it's passing health checks or not, does it?
[20:10:50] <ebernhardson>	 or well, the only recent logs are about throttling. maybe not the same :)
[20:11:13] <ebernhardson>	 inflatador: hmm, sadly i dont know either. looking
[20:11:33] <ebernhardson>	 i'm pretty sure that config-master isn't telling us though, that it's saying the state of config rather than the state after taking health-checks into account
[20:12:07] <ebernhardson>	 i suppose icinga should have something to say usually about health checks failing and kicking it out
[20:12:23] <inflatador>	 https://wikitech.wikimedia.org/wiki/Incidents/2022-03-27_wdqs_outage first hit in wikitech
[20:13:00] <ebernhardson>	 but icinga is *slow*...will take 10+ minutes to find anything in there
[20:13:15] <inflatador>	 looks like the alerts are LVS-centric rather than service-centric? 
[20:13:39] <ebernhardson>	 they should be per-host, example message is "PROBLEM - PyBal backends health check on lvs2009 is CRITICAL"
[20:14:52] <ebernhardson>	 lol, loading icinga.wikimedia.org crashed the browser tab :P
[20:14:58] * ebernhardson tries another browser
[20:18:33] <ebernhardson>	 inflatador: https://icinga.wikimedia.org/cgi-bin/icinga/extinfo.cgi?type=1&host=wdqs1004 is rather not clear, but it doesn't seem like the health check is failing. I've run `sudo depool` on wdqs1004 now
[20:20:32] <inflatador>	 yeah, I don't get it. I'm also wondering why we didn't get notified on these alerts. I can't find the alerts from the 2022-03-27 , did you get those in your email? Wondering if I need to be added to a list or something
[20:21:23] <ebernhardson>	 inflatador: nope, no alerts coming through today, but i suppose i'm not sure if those alerts ever came into discovery-alerts
[20:22:50] <ebernhardson>	 querying blazegraph directly on 9999 (maybe with a badly formed request, not sure) says "Service load too high, please come back later :)"
[20:23:24] <inflatador>	 hmm
[20:23:38] <ebernhardson>	 using `localhost:9999/bigdata/namespace/wdq/sparql?query=%20ASK%7B%20%3Fx%20%3Fy%20%3Fz%20%7D` which should be the same as the readiness-probe
[20:24:03] <ebernhardson>	 should be well formed, same request on 1005 returns an xml document that says 'true'
[20:24:19] <ebernhardson>	 maybe restart blazegraph on 1004? randomly guessing it seems stuck, perhaps same issue as the deadlock before
[20:24:30] <ebernhardson>	 or we can leave it depooled for someone who knows more to investigate
[20:24:36] <ebernhardson>	 (==david :P)
[20:25:18] <ebernhardson>	 hmm, looking if we have better details on how to see if its the same deadlock
[20:25:28] <inflatador>	 oop, just restarted
[20:25:40] <ebernhardson>	 no worries, random rare deadlocks are a thing blazegraph does it seems :P
[20:27:22] <ebernhardson>	 scrolling back my email history for a search on `icinga alert` shows i also didn't get alerts for the 2022-03-27 ones
[20:27:41] <inflatador>	 yeah, I was checking SAL and they didn't fire there either
[20:29:04] <ebernhardson>	 1004 looks happy now, repooling
[20:29:27] * ebernhardson realizes he's only used `sudo depool`, have to check how repool works :P
[20:29:34] <ryankemper>	 ebernhardson: `sudo pool`
[20:29:41] <inflatador>	 hmm, I guess icinga doesn't actually make into the SAL
[20:29:48] <ebernhardson>	 all updated, it should be back in now
[20:29:53] <ryankemper>	 icinga alerts don't show in SAL
[20:30:29] <inflatador>	 ryankemper ACK, did you get any alerts for wdqs in your email today or during that March outage? I don't see any
[20:30:41] <ebernhardson>	 it seems like the health check should have failed and it should have been auto-depooled, i was querying basically a manual version of the readiness-probe endpoint which i think is what lvs is checking
[20:31:46] <ryankemper>	 I think I remember seeing some emails for wdqs1004 over the weekend, lemme check
[20:32:15] <ryankemper>	 yeah july 23rd: `** PROBLEM alert - wdqs1004/Query Service HTTP Port is CRITICAL **`
[20:32:17] <ebernhardson>	 double checked lvs config (in hieradata/common/service.yaml), lvs should be using the readiness-probe endpoint. hmm
[20:33:40] <inflatador>	 ryankemper interesting, what email address did those alerts go to?
[20:34:32] <ryankemper>	 I have from `nagios@alert1001.wikimedia.org` to `rkemper@wikimedia.org`
[20:35:13] <ryankemper>	 I don't remember having had to set anything up specifically to get those, but maybe it was an onboarding step somewhere that I don't remember?
[20:37:12] <inflatador>	 not sure myself, I do remember some steps related to icinga
[20:37:18] <inflatador>	 created phab task for this BTW https://phabricator.wikimedia.org/T313855
[20:39:05] <ryankemper>	 Not convinced we need a ticket, but I might be missing context
[20:39:29] <ryankemper>	 We had one host down and not depooled, which is not good, but I wouldn't call that an outage
[20:39:53] <ryankemper>	 Seems like we'd want just a general ticket to figure out the process to get nagios emails coming through properly if they're not
[20:40:13] <ryankemper>	 and/or maybe porting to alertmanager alerts where we have multiple alternatives for firing (irc, email, etc)
[20:40:14] <inflatador>	 Yeah, I guess "outage" is a little too loaded of a term
[20:40:43] <inflatador>	 OK, fixed the title, and yeah we do need to figure out where that comes from
[20:41:04] <ryankemper>	 anyway i'd have expected pybal to depool this, since it will depool a host failing health checks if there's not already too many depooled
[20:41:19] <ryankemper>	 I'd guess in this case that the health check itself was passing, but need to check that
[20:41:46] <inflatador>	 does observability own alerting? If so, we might just ask them in IRC
[20:42:16] <ebernhardson>	 i suppose it depends what passing means, sadly curl hides status codes so i'm not sure what the http status code was in the response, but it was certainly an error message that i would have expected to be paired with a 5xx error code (probably 503)
[20:42:39] <ebernhardson>	 "Service load too high, please come back later :)"
[20:42:47] <inflatador>	 it was def a 503, I saw it in icinga
[20:43:17] <ryankemper>	 inflatador: I'd ask either o11y or just ask in #wikimedia-sre, I'd bet some people outside of o11y know what's involved in getting the nagios emails
[20:44:17] <ryankemper>	 per https://phabricator.wikimedia.org/T297907 it might be that the icinga emails are handled by victorops, altho that seems a bit weird
[20:45:20] <ryankemper>	 inflatador: take a look at https://portal.victorops.com/dash/wikimedia#/routekeys , do you see SRE: email optin under the `icinga` routing key?
[20:47:12] <inflatador>	 ryankemper I do
[20:48:55] <ryankemper>	 inflatador: hmm yeah I'd ask in #wikimedia-sre then if there's anything particular that needs to be done to get emails from nagios/icinga
[20:49:39] <inflatador>	 I found the one from Mar 27 in my email, it's possible the other ones are being eaten by a filter
[20:50:53] <ryankemper>	 inflatador: ah yeah try clicking `All mail` and see if they show up
[20:51:34] <inflatador>	 looks like I only got alerts for May 9 and Mar 27
[20:51:50] <inflatador>	 they have " #page" in them, so I'm guessing those actually did page somebody?
[20:52:29] <RhinosF1>	 Please add a space or _ between # and p
[20:52:54] <inflatador>	 oops , sorry RhinosF1 , I hope I didn't summon everyone ;(
[20:53:06] <RhinosF1>	 Probably not many
[20:53:14] <RhinosF1>	 But they might be a few
[20:54:57] <inflatador>	 ryankemper can you fwd one of the alerts you got for wdqs1004 to me? Just curious what they look like
[20:55:42] <RhinosF1>	 inflatador: observability own alerting ye
[20:55:48] <RhinosF1>	 Probably go.dog best
[20:56:15] <ryankemper>	 inflatador: done
[20:56:47] <ryankemper>	 inflatador: what was the march 27 one you saw? was it a similar format as what i just forwarded or did it actually come from `alert-manager`
[20:58:15] <inflatador>	 similar to yours, will fwd
[21:02:02] <inflatador>	 brb
[21:16:14] <inflatador>	 bqack
[21:17:24] <ryankemper>	 inflatador: the email you got is to alerts@wikimedia.org
[21:17:38] <ryankemper>	 i'm guessing #p.age emails do that
[21:17:45] <ryankemper>	 but you're missing the general alert emails to your specific email
[21:36:12] <ebernhardson>	 heh, php 8.1 is getting `public readonly int $foo` as class variables. Becuase i guess final sounded too much like java :P
[22:17:33] <ryankemper>	 ^ haha
[22:17:54] <ryankemper>	 I do kind of like `readonly`, feels like it conveys a little more intuitively what it's doing
[22:39:24] <ebernhardson>	 yea it's not bad, and it probably has different exact semantics from final so the different name might prevent some confusion.  
[22:40:10] <ebernhardson>	 also we have a *lot* of wikis that start with the letter s, approx 10% of all wikis
[22:40:27] <ebernhardson>	 mostly i'm noticing the reindex was on letter s when i started my day, and it's still there even though most of the wikis aren't *that* big :P
[22:44:22] <ebernhardson>	 also, jq is friggin magic.  Extract a specific file from a pcc catalog: cat change.blahblah.pson | jq -r '.. | .content? | select(index("Access-Control"))' > wcqs.nginx
[22:46:45] <ebernhardson>	 i suppose it did manage to print the file twice, not sure why :P
[23:05:39] <Trey314159>	 ^ Take note, kids! Erik calling something magic is high praise, indeed!