Skip to content

Instantly share code, notes, and snippets.

View annos2's full-sized avatar

annos2

View GitHub Profile
@annos2
annos2 / gist:bf6040392319f0bf630967dbaebdd073
Last active August 8, 2025 11:36
Pulling investigation
Hi Steve! I guess my fix will not resolve pulling issue.
Today I receive a page with pulling instance and spend some time on manually debugging this on the host.
I thought about fixing it without instance reschedule, and I was able to do so.
PD - https://opendns.pagerduty.com/alerts/Q35WOBHR7QPFCS
So there is a two places where the process stuck.
1. Before creating net config for instance problem with lock on `/var/run-host/host-api-instance/{$instance_name}`
https://github.com/cisco-sbg/cloudsec_quadra_quadra-api/blob/b90bc90453c6955e9bd943b1ca30a56ab0fcc164/qhost/api/host.py#L322-L323
```
qhost-api stderr | 2025-08-05 09:16:03,080 level=DEBU client=None request=834991e3-a2af-4b59-bd1b-6c16f3be5b0d user_agent=unknown_python_requests app=qhost.modules.locks: ipc lock /var/run-host/host-api-instance/dlp-scanner-inline-prod-c9c5c4f7a067.delphi.dub1 failed after 20001.278076171875ms
qhost-api stderr |
@annos2
annos2 / gist:d4cd8a97d1316f18e0ac5690543a8d41
Last active August 4, 2025 15:32
Talos Logging issue
1. We have logging:
```
$ qq logging show talosintsplunklogs.ipedia
Using Streamline Auth as annos@cisco.com
Log Slug Project Type API Token Index Endpoint
------------------------- ------- ------ -------------------------------- ----------------------------- --------------------------------------------
talosintsplunklogs.ipedia ipedia splunk 8bf3############################ talos-quadra-ipedia-int-event http-inputs-cisco-talos-use1.splunkcloud.com
Deployments using talosintsplunklogs.ipedia logging configuration:
Pool Deployment
@annos2
annos2 / gist:b80b65b4637f24439af4fb47059f5f52
Last active July 30, 2025 15:03
API BUG
# Instance scheduled and then moved to pulling state
qhost-api stderr | 2025-07-23 08:46:07,268 app=qhost.modules.pooltools: instance state before: status: scheduled, hash: mps-e9ca8e78bf1a.sigenv1.mel1
qhost-api stderr | 2025-07-23 08:46:07,268 app=qhost.modules.pooltools: instance state after: status: pulling, hash: mps-e9ca8e78bf1a.sigenv1.mel1
# DDOS of `container_v2` endpoint and finally createing net config
qhost-api stderr | 2025-07-23 08:48:57,586 app=qhost.api: endpoint=containerv2.head method=HEAD response_status=200 user=quadraqhost_b auth=ClassicAuth uri=http://127.0.0.1:5050/quadra/containers_v2/mps-e9ca8e78bf1a.sigenv1.mel1 ip=146.112.186.93 time=390 size=4 user_agent=no_agent
qhost-api stderr | 2025-07-23 08:48:59,736 app=qhost.modules.pooltools: Creating netconfig for container mps-e9ca8e78bf1a.sigenv1.mel1
# Creating docker container and between still ddos of `container_v2` endpoint
@annos2
annos2 / gist:455162f7eb72f2c1b68325da7a5e07f6
Created July 18, 2025 13:00
TF plan
# module.dashboards.signalfx_dashboard.etcd_metrics will be destroyed
# (because signalfx_dashboard.etcd_metrics is not in configuration)
- resource "signalfx_dashboard" "etcd_metrics" {
- charts_resolution = "default" -> null
- dashboard_group = "Gv92PS4AcAA" -> null
- id = "Gv96g5NAcAA" -> null
- name = "Etcd Metrics" -> null
- time_range = "-6h" -> null
- url = "https://cisco-opendnsbu-sse.signalfx.com/#/dashboard/Gv96g5NAcAA" -> null
@annos2
annos2 / gist:9ab1d1292ec994cfd270d422aaad1947
Created July 16, 2025 10:36
TF APPLY
+ terraform init -input=false
Initializing the backend...
Successfully configured the backend "s3"! Terraform will automatically
use this backend unless the backend configuration changes.
@annos2
annos2 / gist:2ad27ce60a0e0a3e8a5bb0fb5073c495
Created June 18, 2025 12:18
oaouth bes
  p1w │ ~/cisco/github-cloud/cloudsec_quadra_oauth_server │ QQ-10188_pin…ons_and_hash ......................................................................................................... cloudsec_quadra_quadra-api  │ 15:16:56 
$ make lock-dependencies
pip3 install virtualenv && \
python3 -m venv venv
Requirement already satisfied: virtualenv in /Users/annos/.pyenv/versions/3.8.10/lib/python3.8/site-packages (20.31.2)
Requirement already satisfied: distlib<1,>=0.3.7 in /Users/annos/.pyenv/versions/3.8.10/lib/python3.8/site-packages (from virtualenv) (0.3.9)
Requirement already satisfied: filelock<4,>=3.12.2 in /Users/annos/.pyenv/versions/3.8.10/lib/python3.8/site-packages (from virtualenv) (3.16.1)
Requirement already satisfied: platformdirs<5,>=3.9.1 in /Users/annos/.pyenv/versions/3.8.10/lib/python3.8/site-packages (from virtualenv) (4.3.6)
. ./venv/bin/activate && \
pip3 install .[lock] && \
@annos2
annos2 / gist:f156211320b56eafa76cbcb23dbcbfb7
Last active February 5, 2025 12:09
splunk optional instance
```
$ QUADRA_APISERVER=http://qhost-0437f7b3eb93cf443.quadra.s1.usw1.opendns.com:5050 qq logging create --project annos --logging-type splunk --logging-api-key bad-token-123 --logging-index quadra-quadra-platform-prod-index annosexamplecustomendpoint --custom-endpoint annos-test-custom.splunk.endpoint.com
Using Streamline Auth as annos@cisco.com
*WARNING* Your client is a developer version
There's a new version available! Please run 'sudo qq upgrade' to install it
Log Slug Project Type
-------------------------------- ------- ------
annosexamplecustomendpoint.annos annos splunk
$ qq pool show -vvv splunk-test-datadoc-annos.quadra