►
From YouTube: Walkthrough: Ceph Release Process
Description
The Ceph release process. Presented by David Galloway
A
B
B
Yeah,
so
there's
there's
just
a
couple
things
to
be
aware
of
the
signing
machine
used
to
be
a
virtual
machine
that
lived
in
the
OCTA
lab
behind
Red
Hats
firewall,
but
there
was
a
a
plea
to
move
it
to
the
sepia
lab
so
that
non-red
Hatters
could
also
participate
in
the
release
process
if,
if
necessary,
so
it's
a
it's
a
virtual
machine.
It's
highly
available.
It
lives
on
the
Rev
cluster
that
has
been
in
place,
for
you
know
four
or
five
plus
years.
Something
like
that.
B
B
The
pin
should
only
be
needed
if
the
VM
is
restarted.
However,
so
there
there's
a
gpg
agent
there
and
I
think
the
timeout
is
set
to
like
a
year
or
maybe
four
years
or
something
whatever
whatever
the
max
is
so
yeah.
So
the
the
key
itself
should
only
need
to
be
unlocked
if
the
if
the
signing
VM
is
rebooted
for
whatever
reason.
B
So
that's
that
there's
a
another
note
here
about
new
major
releases,
so
this
would
be
like
an
alphabetical
release,
so
this
will
need
to
be
done
for
Reef,
but
there's
like
a
separate
package
that
doesn't
get
built
as
part
of
a
regular
stuff,
build
and
I
think
what
this
package
does
is
installs
a
repo
file,
I
think
I.
Think
I
think
that's
what
the
purpose
of
this
stuff
release
package
is.
B
B
Yeah,
so
those
are
the
two
prerequisites
before
a
ceph
build
can
happen.
I,
don't
I,
don't
fully
understand
what
what
like
Yuri's
process
is,
but
the
the
current
release
process
now
is.
You
know,
once
once,
Yuri
has
tested
everything
and
found
a
stopping
point
that
we're
you
know
we're
we're
ready
to
cut
a
new
release.
He
he
pushes
that
stopping
point
to
the
corresponding
Dash
release,
Branch
and
then
notifies
me
that
the
branch
is
ready
to
be
built.
B
There
are
a
couple
deviations
from
that,
for
example,
if
we're
doing
a
hotfix
release,
what
we
would
want
to
do
instead
is
is
check
out
the
most
recent
tag.
So,
since
1723
is
the
last
Quincy
release,
we
would
check
that
out.
Cherry
pick
any
hotfix
commits
on
top
of
it
and
then
push
that
Branch
to
Quincy
Dash
release
and
it's
sort
of
the
same
thing
for
a
security
release.
The
only
difference
is,
it
would
get
pushed
to
the
Seth
private
repo
instead
of
cef.get.
B
One
would
just
go
to
this
Jenkins
job,
we'll
use
Quincy
as
an
example,
so
you
would
put
Quincy
there
tag
should
be
checked
and
then
the
next
version
is
going
to
be
17
to
4..
So
that
would
go
there
and
then
the
only
other
thing
that
needs
to
be
changed
is
the
list
of
distros.
Here
you,
you
could
just
hit
build
at
this
point
and
the
ones
that
we
don't
normally
build
packages
for
would
fail,
but
it
it's
cleaner
in,
in
my
opinion,
to
specify
it
so
yeah.
B
B
B
These
end
up
as
a
as
a
blog
post.
So
if
you
go
to
stuff.io
news
blog,
this
is
filing
filing.
This
pull
request
here
resulted
in
this
blog
post
here
so
and
then
the
third
one
is
just
writing.
Like
the
the
email
announcement,
the
instructions
to
write,
the
release
notes
have
historically
always
been
on
on
this
wiki
page
on
the
tracker
it
it
could
move.
I
guess
but
I,
just
I
sort
of
clarified
it
here,
but
yeah.
All
the
commands
are
step
by
step.
B
Of
Quincy
was
1723,
and
then
we
want
to
know
the
difference
between
the
tip
of
Quincy
or
one
C
Dash.
It
would
be
Quincy
Dash
release,
but
just
so
you
can
see
what
the
output
looks
like.
So
what
this
does
is
goes
through
using
your
GitHub
API
token
and
checks
all
of
the
pull
requests
that
were
merged
between
17-3
and
the
tip
of
Quincy,
and
then
it
will
spit
out
a
nice
markdown
version
of
of
the
changelog,
and
once
that's
done,
you.
C
B
The
output
will
get
put
here
like
this,
so
this
is
eventually
that
command
will
return
and
and
look
like
this
typically,
the
component
leads
will
add
their
own
commits
to
this
release.
Notes,
pull
request
with
any
notable
changes
that
are
necessary
and
then
finally,
the
the
email
so
yeah
I
normally
just
start
a
draft.
B
B
B
A
B
B
So
that's
that's
why
I
haven't,
but
once
that
is
all
done,
that
that
also
takes
quite
a
bit
of
time
signing,
but
once
it's
done,
you
just
run
the
sync
push
and
I'm,
not
I'm,
not
going
to
run
sync
push
right
now,
just
because
this
octopus
repos
in
a
a
weird
State
since
I,
haven't
finished
it,
but
so
that
will
end
up
pushing
the
packages
to
so.
Here's
an
example
of
the
latest
Quincy
the
Debian
packages
get
pushed
here.
B
The
RPM
packages
get
pushed
here
and
then
at
the
end
of
that
sync
push
command
or
the
the
script.
Sorry,
this
Sim
link
here
gets
updated,
so
people
that
have
a
repo
file
that
still
use
packages
don't
need
to
like
change
the
path
or
anything.
So
this
this
is
just
a
Sim
link
that
points
back
to
the
most
recent
version.
B
C
B
B
B
Yeah,
so
this
is
like
Centos
9,
and
this
failed,
because
I
I
tried
to
build
Centos
9
packages,
but
it
was
at
a
point.
The
Quincy
Branch
was
at
a
point
where
I
tried
to
build
1723
for
Quincy,
but
there
were
things
merged
into
Quincy
after
1723
that
are
are
necessary
to
build
Centos
9
packages.
So
the
next
version
of
Quincy
should
have
a
central
S9
release,
but
yeah
and
typically
I,
don't
I,
don't
see
things
go
wrong.
It's
just
it's.
B
B
D
B
B
That
sort
of
thing,
I,
guess:
I,
don't
I,
don't
know
if
that's
considered
tribal
knowledge
or
just
experience
or
what,
but
you
know,
based
on
whatever
happened
in
the
build,
would
determine
who
I
would
reach
out
to
like.
If,
if
the
build
failed
super
early
like
somewhere
around
here,
for
example,
I
would
know,
that's
probably
like
something
infrastructure
related
and
something
that
the
build
lead
or
I
would
would
need
to
fix.
B
D
B
B
A
B
Adding
another
architecture:
yeah
yeah,
I
I,
don't
I,
don't
know.
To
be
honest,
so
you
know
when,
when
we,
when
we
cut
a
new
alphabetical
stuff
release,
what
I
typically
do
is
just
go
into
this
F
Dash
build
repo,
which
is
where
all
of
the
Jenkins
jobs
file
definitions
are
and
just
grep
for
Quincy
and
then
check
each
and
every
one
of
those
files
and
then.
C
B
A
D
B
B
B
I,
don't
think
that
even
gets
called
tag
is
right,
yeah,
so
so
the
the
on
on
the
back
end
of
this,
what
happens
when
this
job
gets
started?
Is
there
is
a
CEF
Dash
release
if
that
releases
repo
and
it's
basically
a
mirror
of
the
ceph
repo?
You
can
see
here
it's
private,
but
what
happens
is
the
version
commit
gets
created
and
when
I
say
version
commit.
B
But
you
can
see
here
as
long
as
tag
is
not
checked,
then
that
that
part
doesn't
happen,
so
the
version
commit
would
get
pushed
to
the
self-releases
branch.
So
if
you
wanted
to
do
like
a
an
RC
release,
for
example,
the
version
commit
would
get
pushed
here,
but
the
next
time
you
ran
it,
it
would
overwrite
the
tag.
If
you
wanted
to
reuse
the
same
number,
if
you
didn't,
then
it
would
just
it
would
just
be
another.
E
Yes,
I
have
a
quick
question,
please
about
new
dependencies
that
we
need
to
include,
but
they're
not
available
in
any
distribution.
Yet
so
usually
we'll
check
if
they're
available
in
apple
and
if
not
we'll,
have
them
build
and
available
in
a
copper
repo
and
then
it
will
be
available
in
the
containerize
the
deployments.
B
B
I
think
so
what
we've
done
historically
is
like
when
Sentosa
or
relate
whichever
one
was
first
came
out.
You
know
we
obviously
hit
a
bunch
of
like
Python
3
dependencies
that
that
didn't
exist
and
Ken
dryer
and
Justin
I'm
gonna,
I'm,
gonna,
murder,
your
last
name,
I'm,
sorry
karatsis,
build
the
packages
and
then
pushed
them
to
the
Fedora
build
system,
and
then
we
would
just
sort
of
go
around
and
thumbs
up
those
packages
which
automatically
I
think
puts
them
into
Apple.
B
E
B
B
A
C
B
So
these
these
were
manually
built
and
then
pushed
here.
There
may
be
newer
versions
of
these
in
apple,
and
if
that
is
the
case,
then
those
get
installed
instead
and
these
these
aren't
used,
but
though
I'm
sure
I'm
sure
you
guys
saw
these
installing
ceph
test
on
the
test.
Nodes
has
been
failing
the
past
couple
days,
and
that
was
because
they
removed
the
XML
Starlet
package
from
the
base.
Os
repo
super
not
helpfully
it
is
going
to
be
in
Rel,
8.7
and
I
I.
B
Don't
remember
what
sent
to
West
equivalent
but
they're
in
the
process
of
getting
it
re-added
back
to
a
different
repo,
but
anyway,
in
the
meantime,
I
I,
just
they
they
did
build
XML,
Starlet,
I,
think
today.
So
what
I
did
is
downloaded
it
and
pushed
it
to
lab
extras
so
that
we
can
continue
testing
just
as
another
example
of
a
type
of
package
that
would
go
here
but
yeah
as
far
as
like
run
time
dependencies,
if
they're
not
available
in
another
repo
like
we,
we
can't.