[00:48:11] 07HTTPS, 10Traffic, 06Operations, 07Browser-Support-Firefox: Secure connection failed when attempting to send POST request - https://phabricator.wikimedia.org/T134869#2280304 (10Elvey) Seeing this error too. For me too, "it occurs when saving almost any edit", (or at least most edits) since a couple days a... [06:54:55] 10Traffic, 06Operations: Ashburn servers almost unreachable from part of Europe - https://phabricator.wikimedia.org/T136067#2321971 (10Nemo_bis) [07:07:03] 10Traffic, 06Operations: Ashburn servers almost unreachable from part of Europe - https://phabricator.wikimedia.org/T136067#2321998 (10Nemo_bis) [07:09:50] 10Traffic, 06Operations: Ashburn servers almost unreachable from part of Europe - https://phabricator.wikimedia.org/T136067#2321999 (10Nemo_bis) 05Open>03Resolved a:03Nemo_bis Looks like a temporary capacity problem now solved by either Telia or the ISPs... ``` $ mtr -w -c 50 wikitech.wikimedia.org Star... [09:31:58] 10Traffic, 06Discovery, 06Operations, 10Wikidata, and 2 others: Wikidata Query Service REST endpoint returns truncated results - https://phabricator.wikimedia.org/T133490#2322153 (10ema) [09:32:01] 10Traffic, 10Varnish, 06Operations: Upgrade all cache clusters to Varnish 4 - https://phabricator.wikimedia.org/T131499#2322154 (10ema) [09:32:04] 10Traffic, 10Varnish, 06Operations, 13Patch-For-Review: cache_misc's misc_fetch_large_objects has issues - https://phabricator.wikimedia.org/T128813#2322155 (10ema) [09:32:07] 10Traffic, 10Varnish, 06Operations, 13Patch-For-Review: Convert misc cluster to Varnish 4 - https://phabricator.wikimedia.org/T131501#2322151 (10ema) 05Open>03Resolved It's now been a week after our re-upgrade of cache_misc to Varnish 4 and I'm not aware of any new issues being discovered. Closing. [10:36:49] 10Traffic, 10Beta-Cluster-Infrastructure, 06Labs, 06Operations, 13Patch-For-Review: Varnishlog doesn't properly rotates logs, varnish.log is empty since forever (was: deployment-cache-upload04 (m1.medium) / is almost full) - https://phabricator.wikimedia.org/T135700#2322313 (10hashar) Puppet is broken on... [11:29:24] https://ripe72.ripe.net/wp-content/uploads/presentations/21-Ripe_2016v5_final.pdf [11:29:43] 4GB over avian carriers [12:08:41] https://grafana.wikimedia.org/dashboard/db/tls-ciphers seems broken [12:08:43] is there a replacement? [12:09:21] broken since May 19th it seems [12:24:18] ema: ^ [12:25:13] paravoid: you're right [12:25:26] perhaps something went wrong with https://gerrit.wikimedia.org/r/#/c/289588/? [12:25:39] that's from May 19th [12:28:08] or d6ad60ab010e4a15738cd4fbf9bf93aebc9b982d [12:28:11] mmh [12:40:45] on cp1008 d6ad60ab010e4a15738cd4fbf9bf93aebc9b982d seems to be doing the right thing... [12:46:50] paravoid: the data seems to be there, I've just created this one as a test https://grafana.wikimedia.org/dashboard/db/ssl_ciphers [13:00:02] hi :) [13:00:21] hey :) [13:01:43] what seems broken to both of you? [13:01:55] with tls-ciphers I mean [13:02:26] oh... probably non-default time range [13:02:34] try zooming out to a months-long view [13:03:00] I set the data to weekly averages to get the weekday/weekend blip-noise out of it, to see long-term trends better [13:03:20] (and set the default time window to "when we deployed cipher logging -> now", which is 10 months and growing [13:15:30] bblack: right! Staring at the view for this month made it look like no data has been collected after the 19th [13:16:11] there's probably a "right" way to set it up [13:16:31] where the summarize resolution is a variable dependent on the time range being viewed or something [13:53:05] do we collect stats about SSL/TLS versions? [13:53:43] I think we used to, no? [14:07:52] paravoid: https://grafana.wikimedia.org/dashboard/db/client-connections [14:08:12] ah [14:08:50] thanks :) [14:08:54] np :) [16:18:39] so, in addition to the new dual-cert code, nginx master also added: [16:18:49] http://hg.nginx.org/nginx/rev/ce94f07d5082 [16:20:10] (which is the HTTP/2 pre-read stuff to get around various POST regressions/perf-issues on HTTP/2, may affect the FF 46.0.1 bug too) [16:20:26] and they cut a 1.11.0 release with all of that in it [16:21:01] so, sometime soon, we should figure out on cp1008 how we move to 1.11.0 in our package (mostly, it's a matter of figuring out the new stapling stuff)