| 1 | | [ May 13 19:13:47 Enabled. ] |
| 2 | | [ May 13 19:13:47 Rereading configuration. ] |
| 3 | | [ May 13 19:13:50 Rereading configuration. ] |
| 4 | | [ May 13 19:14:02 Executing start method ("ctrun -l child -o noorphan,regent /opt/oxide/omicron-nexus/bin/nexus /var/svc/manifest/site/nexus/config.toml &"). ] |
| 5 | | [ May 13 19:14:02 Method "start" exited with status 0. ] |
| 6 | | note: configured to log to "/dev/stdout" |
| 7 | 2024-05-13T19:14:02.608Z | DEBG | nexus: registered DTrace probes
|
| 8 | 2024-05-13T19:14:02.609Z | INFO | nexus: setting up nexus server
file = nexus/src/lib.rs:96
|
| 9 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Action
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 10 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = AnyActor
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 11 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = AuthenticatedActor
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 12 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = BlueprintConfig
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 13 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Database
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 14 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = DnsConfig
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 15 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Fleet
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 16 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Inventory
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 17 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = IpPoolList
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 18 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = ConsoleSessionList
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 19 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = DeviceAuthRequestList
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 20 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = SiloCertificateList
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 21 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = SiloIdentityProviderList
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 22 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = SiloUserList
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 23 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Project
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 24 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Disk
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 25 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Snapshot
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 26 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = ProjectImage
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 27 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Instance
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 28 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = IpPool
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 29 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = InstanceNetworkInterface
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 30 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Vpc
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 31 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = VpcRouter
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 32 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = RouterRoute
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 33 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = VpcSubnet
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 34 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = FloatingIp
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 35 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Image
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 36 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = SiloImage
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 37 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = AddressLot
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 38 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Blueprint
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 39 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = LoopbackAddress
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 40 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = Certificate
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 41 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = ConsoleSession
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 42 | 2024-05-13T19:14:02.622Z | INFO | nexus (ServerContext): registering Oso class
class = DeviceAuthRequest
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 43 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = DeviceAccessToken
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 44 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = PhysicalDisk
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 45 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = Rack
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 46 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = RoleBuiltin
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 47 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = SshKey
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 48 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = Silo
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 49 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = SiloUser
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 50 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = SiloGroup
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 51 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = IdentityProvider
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 52 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = SamlIdentityProvider
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 53 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = Sled
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 54 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = TufRepo
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 55 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = TufArtifact
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 56 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = Zpool
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 57 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = Service
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 58 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): registering Oso class
class = UserBuiltin
file = nexus/db-queries/src/authz/oso_generic.rs:68
|
| 59 | 2024-05-13T19:14:02.623Z | INFO | nexus (ServerContext): full Oso configuration
config = #\n# Oso configuration for Omicron\n# This file is augmented by generated snippets.\n#\n\n#\n# ACTOR TYPES AND BASIC RULES\n#\n\n# `AnyActor` includes both authenticated and unauthenticated users.\nactor AnyActor {}\n\n# An `AuthenticatedActor` has an identity in the system. All of our operations\n# today require that an actor be authenticated.\nactor AuthenticatedActor {}\n\n# For any resource, `actor` can perform action `action` on it if they're\n# authenticated and their role(s) give them the corresponding permission on that\n# resource.\nallow(actor: AnyActor, action: Action, resource) if\n actor.authenticated and\n has_permission(actor.authn_actor.unwrap(), action.to_perm(), resource);\n\n# Define role relationships\nhas_role(actor: AuthenticatedActor, role: String, resource: Resource)\n\tif resource.has_role(actor, role);\n\n#\n# ROLES AND PERMISSIONS IN THE FLEET/SILO/PROJECT HIERARCHY\n#\n# We define the following permissions for most resources in the system:\n#\n# - "create_child": required to create child resources (of any type)\n#\n# - "list_children": required to list child resources (of all types) of a\n# resource\n#\n# - "modify": required to modify or delete a resource\n#\n# - "read": required to read a resource\n#\n# We define the following predefined roles for only a few high-level resources:\n# the Fleet (see below), Silo, Organization, and Project. The specific roles\n# are oriented around intended use-cases:\n#\n# - "admin": has all permissions on the resource\n#\n# - "collaborator": has "read", "list_children", and "create_child", plus\n# the "admin" role for child resources. The idea is that if you're an\n# Organization Collaborator, you have full control over the Projects within\n# the Organization, but you cannot modify or delete the Organization itself.\n#\n# - "viewer": has "read" and "list_children" on a resource\n#\n# Below the Project level, permissions are granted via roles at the Project\n# level. For example, for someone to be able to create, modify, or delete any\n# Instances, they must be granted project.collaborator, which means they can\n# create, modify, or delete _all_ resources in the Project.\n#\n# The complete set of predefined roles:\n#\n# - fleet.admin (superuser for the whole system)\n# - fleet.collaborator (can manage Silos)\n# - fleet.viewer (can read most non-siloed resources in the system)\n# - silo.admin (superuser for the silo)\n# - silo.collaborator (can create and own Organizations)\n# - silo.viewer (can read most resources within the Silo)\n# - organization.admin (complete control over an organization)\n# - organization.collaborator (can manage Projects)\n# - organization.viewer (can read most resources within the Organization)\n# - project.admin (complete control over a Project)\n# - project.collaborator (can manage all resources within the Project)\n# - project.viewer (can read most resources within the Project)\n#\n# Outside the Silo/Organization/Project hierarchy, we (currently) treat most\n# resources as nested under Fleet or else a synthetic resource (see below). We\n# do not yet support role assignments on anything other than Fleet, Silo,\n# Organization, or Project.\n#\n\n# "Fleet" is a global singleton representing the whole system. The name comes\n# from the idea described in RFD 24, but it's not quite right. This probably\n# should be more like "Region" or "AvailabilityZone". The precise boundaries\n# have not yet been figured out.\nresource Fleet {\n\tpermissions = [\n\t "list_children",\n\t "modify",\n\t "read",\n\t "create_child",\n\t];\n\n\troles = [\n\t # Roles that can be attached by users\n\t "admin",\n\t "collaborator",\n\t "viewer",\n\n\t # Internal-only roles\n\t "external-authenticator"\n\t];\n\n\t# Roles implied by other roles on this resource\n\t"viewer" if "collaborator";\n\t"collaborator" if "admin";\n\n\t# Permissions granted directly by roles on this resource\n\t"list_children" if "viewer";\n\t"read" if "viewer";\n\t"create_child" if "collaborator";\n\t"modify" if "admin";\n}\n\n# For fleets specifically, roles can be conferred by roles on the user's Silo.\nhas_role(actor: AuthenticatedActor, role: String, _: Fleet) if\n\tsilo_role in actor.confers_fleet_role(role) and\n\thas_role(actor, silo_role, actor.silo.unwrap());\n\nresource Silo {\n\tpermissions = [\n\t "list_children",\n\t "modify",\n\t "read",\n\t "create_child",\n\t];\n\troles = [ "admin", "collaborator", "viewer" ];\n\n\t# Roles implied by other roles on this resource\n\t"viewer" if "collaborator";\n\t"collaborator" if "admin";\n\n\t# Permissions granted directly by roles on this resource\n\t"list_children" if "viewer";\n\t"read" if "viewer";\n\n\t"create_child" if "collaborator";\n\t"modify" if "admin";\n\n\t# Permissions implied by roles on this resource's parent (Fleet). Fleet\n\t# privileges allow a user to see and potentially administer the Silo,\n\t# but they do not give anyone permission to look at anything inside the\n\t# Silo. To achieve this, we use permission rules here. (If we granted\n\t# Fleet administrators _roles_ on the Silo, then those would cascade\n\t# into the Silo as well.)\n\trelations = { parent_fleet: Fleet };\n\t"read" if "viewer" on "parent_fleet";\n\t"modify" if "collaborator" on "parent_fleet";\n\n\t# external authenticator has to create silo users\n\t"list_children" if "external-authenticator" on "parent_fleet";\n\t"create_child" if "external-authenticator" on "parent_fleet";\n}\n\nhas_relation(fleet: Fleet, "parent_fleet", silo: Silo)\n\tif silo.fleet = fleet;\n\n# As a special case, all authenticated users can read their own Silo. That's\n# not quite the same as having the "viewer" role. For example, they cannot list\n# Organizations in the Silo.\n#\n# One reason this is necessary is because if an unprivileged user tries to\n# create an Organization using "POST /organizations", they should get back a 403\n# (which implies they're able to see /organizations, which is essentially seeing\n# the Silo itself) rather than a 404. This behavior isn't a hard constraint\n# (i.e., you could reasonably get a 404 for an API you're not allowed to call).\n# Nor is the implementation (i.e., we could special-case this endpoint somehow).\n# But granting this permission is the simplest way to keep this endpoint's\n# behavior consistent with the rest of the API.\n#\n# This rule is also used to determine if a user can list the identity providers\n# in the Silo (which they should be able to), since that's predicated on being\n# able to read the Silo.\n#\n# It's unclear what else would break if users couldn't see their own Silo.\nhas_permission(actor: AuthenticatedActor, "read", silo: Silo)\n\tif silo in actor.silo;\n\nresource Project {\n\tpermissions = [\n\t "list_children",\n\t "modify",\n\t "read",\n\t "create_child",\n\t];\n\troles = [ "admin", "collaborator", "viewer" ];\n\n\t# Roles implied by other roles on this resource\n\t"viewer" if "collaborator";\n\t"collaborator" if "admin";\n\n\t# Permissions granted directly by roles on this resource\n\t"list_children" if "viewer";\n\t"read" if "viewer";\n\t"create_child" if "collaborator";\n\t"modify" if "admin";\n\n\t# Roles implied by roles on this resource's parent (Silo)\n\trelations = { parent_silo: Silo };\n\t"admin" if "collaborator" on "parent_silo";\n\t"viewer" if "viewer" on "parent_silo";\n}\nhas_relation(silo: Silo, "parent_silo", project: Project)\n\tif project.silo = silo;\n\n#\n# GENERAL RESOURCES OUTSIDE THE SILO/PROJECT HIERARCHY\n#\n# Many resources use snippets of Polar generated by the `authz_resource!` Rust\n# macro. Some resources require custom Polar code. Those appear here.\n#\n\nresource Certificate {\n\tpermissions = [ "read", "modify" ];\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\n\t# Fleet-level and silo-level roles both grant privileges on certificates.\n\t"read" if "admin" on "parent_silo";\n\t"modify" if "admin" on "parent_silo";\n\t"read" if "admin" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", certificate: Certificate)\n\tif certificate.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", certificate: Certificate)\n\tif certificate.silo.fleet = fleet;\n\nresource SiloUser {\n\tpermissions = [\n\t "list_children",\n\t "modify",\n\t "read",\n\t "create_child",\n\t];\n\n\t# Fleet and Silo administrators can manage a Silo's users. This is one\n\t# of the only areas of Silo configuration that Fleet Administrators have\n\t# permissions on.\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\t"list_children" if "read" on "parent_silo";\n\t"read" if "read" on "parent_silo";\n\t"modify" if "admin" on "parent_silo";\n\t"create_child" if "admin" on "parent_silo";\n\t"list_children" if "read" on "parent_fleet";\n\t"read" if "read" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n\t"create_child" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", user: SiloUser)\n\tif user.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", user: SiloUser)\n\tif user.silo.fleet = fleet;\n\n# authenticated actors have all permissions on themselves\nhas_permission(actor: AuthenticatedActor, _perm: String, silo_user: SiloUser)\n if actor.equals_silo_user(silo_user);\n\nhas_permission(actor: AuthenticatedActor, "read", silo_user: SiloUser)\n if silo_user.silo in actor.silo;\n\nresource SiloGroup {\n\tpermissions = [\n\t "list_children",\n\t "modify",\n\t "read",\n\t "create_child",\n\t];\n\n\trelations = { parent_silo: Silo };\n\t"list_children" if "read" on "parent_silo";\n\t"read" if "read" on "parent_silo";\n\t"modify" if "admin" on "parent_silo";\n\t"create_child" if "admin" on "parent_silo";\n}\nhas_relation(silo: Silo, "parent_silo", group: SiloGroup)\n\tif group.silo = silo;\n\nresource SshKey {\n\tpermissions = [ "read", "modify" ];\n\trelations = { silo_user: SiloUser };\n\n\t"read" if "read" on "silo_user";\n\t"modify" if "modify" on "silo_user";\n}\nhas_relation(user: SiloUser, "silo_user", ssh_key: SshKey)\n\tif ssh_key.silo_user = user;\n\nresource IdentityProvider {\n\tpermissions = [\n\t "read",\n\t "modify",\n\t "create_child",\n\t "list_children",\n\t];\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\n\t# Silo-level roles grant privileges on identity providers.\n\t"read" if "viewer" on "parent_silo";\n\t"list_children" if "viewer" on "parent_silo";\n\t"modify" if "admin" on "parent_silo";\n\t"create_child" if "admin" on "parent_silo";\n\n\t# Fleet-level roles also grant privileges on identity providers.\n\t"read" if "viewer" on "parent_fleet";\n\t"list_children" if "viewer" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n\t"create_child" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", identity_provider: IdentityProvider)\n\tif identity_provider.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", collection: IdentityProvider)\n\tif collection.silo.fleet = fleet;\n\nresource SamlIdentityProvider {\n\tpermissions = [\n\t "read",\n\t "modify",\n\t "create_child",\n\t "list_children",\n\t];\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\n\t# Silo-level roles grant privileges on identity providers.\n\t"read" if "viewer" on "parent_silo";\n\t"list_children" if "viewer" on "parent_silo";\n\t"modify" if "admin" on "parent_silo";\n\t"create_child" if "admin" on "parent_silo";\n\n\t# Fleet-level roles also grant privileges on identity providers.\n\t"read" if "viewer" on "parent_fleet";\n\t"list_children" if "viewer" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n\t"create_child" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", saml_identity_provider: SamlIdentityProvider)\n\tif saml_identity_provider.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", collection: SamlIdentityProvider)\n\tif collection.silo.fleet = fleet;\n\n#\n# SYNTHETIC RESOURCES OUTSIDE THE SILO HIERARCHY\n#\n# The resources here do not correspond to anything that appears explicitly in\n# the API or is stored in the database. These are used either at the top level\n# of the API path (e.g., "/v1/system/ip-pools") or as an implementation detail of the system\n# (in the case of console sessions and "Database"). The policies are\n# either statically-defined in this file or driven by role assignments on the\n# Fleet. None of these resources defines their own roles.\n#\n\n# Describes the policy for reading and modifying DNS configuration\n# (both internal and external)\nresource DnsConfig {\n\tpermissions = [ "read", "modify" ];\n\trelations = { parent_fleet: Fleet };\n\t# "external-authenticator" requires these permissions because that's the\n\t# context that Nexus uses when creating and deleting Silos. These\n\t# operations necessarily need to read and modify DNS configuration.\n\t"read" if "external-authenticator" on "parent_fleet";\n\t"modify" if "external-authenticator" on "parent_fleet";\n\t# "admin" on the parent fleet also gets these permissions, primarily for\n\t# the test suite.\n\t"read" if "admin" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n}\nhas_relation(fleet: Fleet, "parent_fleet", dns_config: DnsConfig)\n\tif dns_config.fleet = fleet;\n\n# Describes the policy for accessing blueprints\nresource BlueprintConfig {\n\tpermissions = [\n\t "list_children", # list blueprints\n\t "create_child", # create blueprint\n\t "read", # read the current target\n\t "modify", # change the current target\n\t];\n\n\trelations = { parent_fleet: Fleet };\n\t"create_child" if "admin" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n\t"list_children" if "viewer" on "parent_fleet";\n\t"read" if "viewer" on "parent_fleet";\n}\nhas_relation(fleet: Fleet, "parent_fleet", list: BlueprintConfig)\n\tif list.fleet = fleet;\n\n# Describes the policy for reading and modifying low-level inventory\nresource Inventory {\n\tpermissions = [ "read", "modify" ];\n\trelations = { parent_fleet: Fleet };\n\t"read" if "viewer" on "parent_fleet";\n\t"modify" if "admin" on "parent_fleet";\n}\nhas_relation(fleet: Fleet, "parent_fleet", inventory: Inventory)\n\tif inventory.fleet = fleet;\n\n# Describes the policy for accessing "/v1/system/ip-pools" in the API\nresource IpPoolList {\n\tpermissions = [\n\t "list_children",\n\t "modify",\n\t "create_child",\n\t];\n\n\t# Fleet Administrators can create or modify the IP Pools list.\n\trelations = { parent_fleet: Fleet };\n\t"modify" if "admin" on "parent_fleet";\n\t"create_child" if "admin" on "parent_fleet";\n\n\t# Fleet Viewers can list IP Pools\n\t"list_children" if "viewer" on "parent_fleet";\n}\nhas_relation(fleet: Fleet, "parent_fleet", ip_pool_list: IpPoolList)\n\tif ip_pool_list.fleet = fleet;\n\n# Any authenticated user can create a child of a provided IP Pool.\n# This is necessary to use the pools when provisioning instances.\nhas_permission(actor: AuthenticatedActor, "create_child", ip_pool: IpPool)\n\tif silo in actor.silo and silo.fleet = ip_pool.fleet;\n\n# Describes the policy for creating and managing web console sessions.\nresource ConsoleSessionList {\n\tpermissions = [ "create_child" ];\n\trelations = { parent_fleet: Fleet };\n\t"create_child" if "external-authenticator" on "parent_fleet";\n}\nhas_relation(fleet: Fleet, "parent_fleet", collection: ConsoleSessionList)\n\tif collection.fleet = fleet;\n\n# Describes the policy for creating and managing device authorization requests.\nresource DeviceAuthRequestList {\n\tpermissions = [ "create_child" ];\n\trelations = { parent_fleet: Fleet };\n\t"create_child" if "external-authenticator" on "parent_fleet";\n}\nhas_relation(fleet: Fleet, "parent_fleet", collection: DeviceAuthRequestList)\n\tif collection.fleet = fleet;\n\n# Describes the policy for creating and managing Silo certificates\nresource SiloCertificateList {\n\tpermissions = [ "list_children", "create_child" ];\n\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\n\t# Both Fleet and Silo administrators can see and modify the Silo's\n\t# certificates.\n\t"list_children" if "admin" on "parent_silo";\n\t"list_children" if "admin" on "parent_fleet";\n\t"create_child" if "admin" on "parent_silo";\n\t"create_child" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", collection: SiloCertificateList)\n\tif collection.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", collection: SiloCertificateList)\n\tif collection.silo.fleet = fleet;\n\n# Describes the policy for creating and managing Silo identity providers\nresource SiloIdentityProviderList {\n\tpermissions = [ "list_children", "create_child" ];\n\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\n\t# Everyone who can read the Silo (which includes all the users in the\n\t# Silo) can see the identity providers in it.\n\t"list_children" if "read" on "parent_silo";\n\n\t# Fleet and Silo administrators can manage the Silo's identity provider\n\t# configuration. This is one of the only areas of Silo configuration\n\t# that Fleet Administrators have permissions on. This is also one of\n\t# the only cases where we need to look two levels up the hierarchy to\n\t# see if somebody has the right permission. For most other things,\n\t# permissions cascade down the hierarchy so we only need to look at the\n\t# parent.\n\t"create_child" if "admin" on "parent_silo";\n\t"create_child" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", collection: SiloIdentityProviderList)\n\tif collection.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", collection: SiloIdentityProviderList)\n\tif collection.silo.fleet = fleet;\n\n# Describes the policy for creating and managing Silo users (mostly intended for\n# API-managed users)\nresource SiloUserList {\n\tpermissions = [ "list_children", "create_child" ];\n\n\trelations = { parent_silo: Silo, parent_fleet: Fleet };\n\n\t# Everyone who can read the Silo (which includes all the users in the\n\t# Silo) can see the users in it.\n\t"list_children" if "read" on "parent_silo";\n\n\t# Fleet and Silo administrators can manage the Silo's users. This is\n\t# one of the only areas of Silo configuration that Fleet Administrators\n\t# have permissions on. This is also one of the few cases (so far) where\n\t# we need to look two levels up the hierarchy to see if somebody has the\n\t# right permission. For most other things, permissions cascade down the\n\t# hierarchy so we only need to look at the parent.\n\t"create_child" if "admin" on "parent_silo";\n\t"list_children" if "admin" on "parent_fleet";\n\t"create_child" if "admin" on "parent_fleet";\n}\nhas_relation(silo: Silo, "parent_silo", collection: SiloUserList)\n\tif collection.silo = silo;\nhas_relation(fleet: Fleet, "parent_fleet", collection: SiloUserList)\n\tif collection.silo.fleet = fleet;\n\n# These rules grants the external authenticator role the permissions it needs to\n# read silo users and modify their sessions. This is necessary for login to\n# work.\nhas_permission(actor: AuthenticatedActor, "read", silo: Silo)\n\tif has_role(actor, "external-authenticator", silo.fleet);\nhas_permission(actor: AuthenticatedActor, "read", user: SiloUser)\n\tif has_role(actor, "external-authenticator", user.silo.fleet);\nhas_permission(actor: AuthenticatedActor, "modify", user: SiloUser)\n\tif has_role(actor, "external-authenticator", user.silo.fleet);\nhas_permission(actor: AuthenticatedActor, "read", group: SiloGroup)\n\tif has_role(actor, "external-authenticator", group.silo.fleet);\nhas_permission(actor: AuthenticatedActor, "modify", group: SiloGroup)\n\tif has_role(actor, "external-authenticator", group.silo.fleet);\n\nhas_permission(actor: AuthenticatedActor, "read", session: ConsoleSession)\n\tif has_role(actor, "external-authenticator", session.fleet);\nhas_permission(actor: AuthenticatedActor, "modify", session: ConsoleSession)\n\tif has_role(actor, "external-authenticator", session.fleet);\n\n# All authenticated users can read and delete device authn requests because\n# by necessity these operations happen before we've figured out what user (or\n# even Silo) the device auth is associated with. Any user can claim a device\n# auth request with the right user code (that's how it works) -- it's the user\n# code and associated logic that prevents unauthorized access here.\nhas_permission(_actor: AuthenticatedActor, "read", _device_auth: DeviceAuthRequest);\nhas_permission(_actor: AuthenticatedActor, "modify", _device_auth: DeviceAuthRequest);\n\nhas_permission(actor: AuthenticatedActor, "read", device_token: DeviceAccessToken)\n\tif has_role(actor, "external-authenticator", device_token.fleet);\n\nhas_permission(actor: AuthenticatedActor, "read", identity_provider: IdentityProvider)\n\tif has_role(actor, "external-authenticator", identity_provider.silo.fleet);\n\nhas_permission(actor: AuthenticatedActor, "read", saml_identity_provider: SamlIdentityProvider)\n\tif has_role(actor, "external-authenticator", saml_identity_provider.silo.fleet);\n\n# Describes the policy for who can access the internal database.\nresource Database {\n\tpermissions = [\n\t # "query" is required to perform any query against the database,\n\t # whether a read or write query. This is checked when an operation\n\t # checks out a database connection from the connection pool.\n\t #\n\t # Any authenticated user gets this permission. There's generally\n\t # some other authz check involved in the database query. For\n\t # example, if you're querying the database to "read" a "Project", we\n\t # should also be checking that. So why do we do this at all? It's\n\t # a belt-and-suspenders measure so that if we somehow introduced an\n\t # unauthenticated code path that hits the database, it cannot be\n\t # used to DoS the database because we won't allow the operation to\n\t # make the query. (As long as the code path _is_ authenticated, we\n\t # can use throttling mechanisms to prevent DoS.)\n\t "query",\n\n\t # "modify" is required to populate database data that's delivered\n\t # with the system. It should also be required for schema changes,\n\t # when we support those. This is separate from "query" so that we\n\t # cannot accidentally invoke these code paths from API calls and\n\t # other general functions.\n\t "modify"\n\t];\n}\n\n# All authenticated users have the "query" permission on the database.\nhas_permission(_actor: AuthenticatedActor, "query", _resource: Database);\n\n# The "db-init" user is the only one with the "modify" permission.\nhas_permission(USER_DB_INIT: AuthenticatedActor, "modify", _resource: Database);\nhas_permission(USER_DB_INIT: AuthenticatedActor, "create_child", _resource: IpPoolList);\n# It also has "admin" on the internal silo to populate it with built-in resources.\n# TODO-completeness: actually limit to just internal silo and not all silos\nhas_role(USER_DB_INIT: AuthenticatedActor, "admin", _silo: Silo);\n\n# Allow the internal API admin permissions on all silos.\nhas_role(USER_INTERNAL_API: AuthenticatedActor, "admin", _silo: Silo);\n\n\n\n resource Disk {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_project: Project };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(parent: Project, "containing_project", child: Disk)\n if child.project = parent;\n \n\n resource Snapshot {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_project: Project };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(parent: Project, "containing_project", child: Snapshot)\n if child.project = parent;\n \n\n resource ProjectImage {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_project: Project };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(parent: Project, "containing_project", child: ProjectImage)\n if child.project = parent;\n \n\n resource Instance {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_project: Project };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(parent: Project, "containing_project", child: Instance)\n if child.project = parent;\n \n\n resource IpPool {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: IpPool)\n if child.fleet = fleet;\n \n\n resource InstanceNetworkInterface {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = {\n containing_project: Project,\n parent: Instance\n };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(project: Project, "containing_project", child: InstanceNetworkInterface)\n if has_relation(project, "containing_project", child.instance);\n\n has_relation(parent: Instance, "parent", child: InstanceNetworkInterface)\n if child.instance = parent;\n \n\n resource Vpc {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_project: Project };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(parent: Project, "containing_project", child: Vpc)\n if child.project = parent;\n \n\n resource VpcRouter {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = {\n containing_project: Project,\n parent: Vpc\n };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(project: Project, "containing_project", child: VpcRouter)\n if has_relation(project, "containing_project", child.vpc);\n\n has_relation(parent: Vpc, "parent", child: VpcRouter)\n if child.vpc = parent;\n \n\n resource RouterRoute {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = {\n containing_project: Project,\n parent: VpcRouter\n };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(project: Project, "containing_project", child: RouterRoute)\n if has_relation(project, "containing_project", child.vpc_router);\n\n has_relation(parent: VpcRouter, "parent", child: RouterRoute)\n if child.vpc_router = parent;\n \n\n resource VpcSubnet {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = {\n containing_project: Project,\n parent: Vpc\n };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(project: Project, "containing_project", child: VpcSubnet)\n if has_relation(project, "containing_project", child.vpc);\n\n has_relation(parent: Vpc, "parent", child: VpcSubnet)\n if child.vpc = parent;\n \n\n resource FloatingIp {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_project: Project };\n "list_children" if "viewer" on "containing_project";\n "read" if "viewer" on "containing_project";\n "modify" if "collaborator" on "containing_project";\n "create_child" if "collaborator" on "containing_project";\n }\n\n has_relation(parent: Project, "containing_project", child: FloatingIp)\n if child.project = parent;\n \n\n resource Image {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_silo: Silo };\n "list_children" if "viewer" on "containing_silo";\n "read" if "viewer" on "containing_silo";\n "modify" if "collaborator" on "containing_silo";\n "create_child" if "collaborator" on "containing_silo";\n }\n\n has_relation(parent: Silo, "containing_silo", child: Image)\n if child.silo = parent;\n \n\n resource SiloImage {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n\n relations = { containing_silo: Silo };\n "list_children" if "viewer" on "containing_silo";\n "read" if "viewer" on "containing_silo";\n "modify" if "collaborator" on "containing_silo";\n "create_child" if "collaborator" on "containing_silo";\n }\n\n has_relation(parent: Silo, "containing_silo", child: SiloImage)\n if child.silo = parent;\n \n\n resource AddressLot {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: AddressLot)\n if child.fleet = fleet;\n \n\n resource Blueprint {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: Blueprint)\n if child.fleet = fleet;\n \n\n resource LoopbackAddress {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: LoopbackAddress)\n if child.fleet = fleet;\n \n\n\n resource ConsoleSession {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: ConsoleSession)\n if child.fleet = fleet;\n \n\n resource DeviceAuthRequest {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: DeviceAuthRequest)\n if child.fleet = fleet;\n \n\n resource DeviceAccessToken {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: DeviceAccessToken)\n if child.fleet = fleet;\n \n\n resource PhysicalDisk {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: PhysicalDisk)\n if child.fleet = fleet;\n \n\n resource Rack {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: Rack)\n if child.fleet = fleet;\n \n\n resource RoleBuiltin {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: RoleBuiltin)\n if child.fleet = fleet;\n \n\n\n\n\n\n\n\n resource Sled {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: Sled)\n if child.fleet = fleet;\n \n\n resource TufRepo {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: TufRepo)\n if child.fleet = fleet;\n \n\n resource TufArtifact {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: TufArtifact)\n if child.fleet = fleet;\n \n\n resource Zpool {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: Zpool)\n if child.fleet = fleet;\n \n\n resource Service {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: Service)\n if child.fleet = fleet;\n \n\n resource UserBuiltin {\n permissions = [\n "list_children",\n "modify",\n "read",\n "create_child",\n ];\n \n relations = { parent_fleet: Fleet };\n "list_children" if "viewer" on "parent_fleet";\n "read" if "viewer" on "parent_fleet";\n "modify" if "admin" on "parent_fleet";\n "create_child" if "admin" on "parent_fleet";\n }\n has_relation(fleet: Fleet, "parent_fleet", child: UserBuiltin)\n if child.fleet = fleet;\n
file = nexus/db-queries/src/authz/oso_generic.rs:89
|
| 60 | 2024-05-13T19:14:02.640Z | INFO | nexus (ServerContext): Setting up resolver using DNS servers for subnet: Ipv6Subnet { net: Ipv6Net(Ipv6Network { addr: fd00:1122:3344::, prefix: 48 }) }
file = nexus/src/context.rs:161
|
| 61 | 2024-05-13T19:14:02.643Z | INFO | nexus (DnsResolver): new DNS resolver
addresses = [[fd00:1122:3344:1::1]:53, [fd00:1122:3344:2::1]:53, [fd00:1122:3344:3::1]:53, [fd00:1122:3344:4::1]:53, [fd00:1122:3344:5::1]:53]
file = internal-dns/src/resolver.rs:60
|
| 62 | 2024-05-13T19:14:02.645Z | INFO | nexus (ServerContext): Accessing DB url from DNS
file = nexus/src/context.rs:190
|
| 63 | 2024-05-13T19:14:02.662Z | DEBG | nexus (DnsResolver): lookup_all_socket_v6 srv
dns_name = _cockroach._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_cockroach._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_cockroach._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 32221, target: Name("37a9c588-53be-4047-b995-d03ffc1edf5e.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_cockroach._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 32221, target: Name("433e7c52-c2f8-42c4-879e-ebad51f5c8d5.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_cockroach._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 32221, target: Name("a6c61a18-ed95-4c02-8618-2edbc4c279a2.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_cockroach._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 32221, target: Name("a8acddef-d3b5-4f66-8c81-e869fcccae1c.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_cockroach._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 32221, target: Name("ceaf218f-c61c-453f-b39d-27401c6da0c5.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("ceaf218f-c61c-453f-b39d-27401c6da0c5.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::6)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 570032488 } })
|
| 64 | 2024-05-13T19:14:02.664Z | INFO | nexus (ServerContext): DB addresses: [fd00:1122:3344:101::5]:32221,[fd00:1122:3344:101::7]:32221,[fd00:1122:3344:101::3]:32221,[fd00:1122:3344:101::4]:32221,[fd00:1122:3344:101::6]:32221
file = nexus/src/context.rs:220
|
| 65 | 2024-05-13T19:14:02.666Z | INFO | nexus (db::Pool): database connection pool
database_url = postgresql://root@[fd00:1122:3344:101::5]:32221,[fd00:1122:3344:101::7]:32221,[fd00:1122:3344:101::3]:32221,[fd00:1122:3344:101::4]:32221,[fd00:1122:3344:101::6]:32221/omicron?sslmode=disable
file = nexus/db-queries/src/db/pool.rs:69
|
| 66 | 2024-05-13T19:14:02.751Z | INFO | nexus: Database schema version is up to date
desired_version = 61.0.0
file = nexus/db-queries/src/db/datastore/db_metadata.rs:145
found_version = 61.0.0
|
| 67 | 2024-05-13T19:14:02.753Z | INFO | nexus (SEC): SEC running
file = /home/build/.cargo/registry/src/index.crates.io-6f17d22bba15001f/steno-0.4.0/src/sec.rs:811
sec_id = f04711a4-adc5-4264-a012-9f24ada597b0
|
| 68 | 2024-05-13T19:14:02.754Z | DEBG | nexus (DnsResolver): lookup_all_ipv6 srv
dns_name = _dendrite._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_dendrite._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_dendrite._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 12224, target: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::2)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 664350938 } })
|
| 69 | 2024-05-13T19:14:02.755Z | INFO | nexus (Nexus): Determining switch slots managed by switch zones
file = nexus/src/app/mod.rs:993
|
| 70 | 2024-05-13T19:14:02.803Z | INFO | nexus (Nexus): determining switch slot managed by dendrite zone
file = nexus/src/app/mod.rs:1001
zone_address = fd00:1122:3344:101::2
|
| 71 | 2024-05-13T19:14:02.803Z | DEBG | nexus (MgsClient): client request
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12225/local/switch-id
|
| 72 | 2024-05-13T19:14:02.808Z | DEBG | nexus (MgsClient): client response
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12225), path: "/local/switch-id", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "454923e5-c2ec-4e52-b2a2-1d94a2d8ba62", "content-length": "26", "date": "Mon, 13 May 2024 19:14:02 GMT"} })
|
| 73 | 2024-05-13T19:14:02.808Z | INFO | nexus (Nexus): identified switch slot for dendrite zone
file = nexus/src/app/mod.rs:1006
slot = SpIdentifier {\n slot: 0,\n type_: Switch,\n}
zone_address = fd00:1122:3344:101::2
|
| 74 | 2024-05-13T19:14:02.808Z | INFO | nexus (Nexus): completed mapping dendrite zones to switch slots
file = nexus/src/app/mod.rs:1038
mappings = {\n Switch0: fd00:1122:3344:101::2,\n}
|
| 75 | 2024-05-13T19:14:02.839Z | DEBG | nexus (DnsResolver): lookup_all_ipv6 srv
dns_name = _dendrite._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_dendrite._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_dendrite._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 12224, target: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::2)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 749879797 } })
|
| 76 | 2024-05-13T19:14:02.840Z | INFO | nexus (Nexus): Determining switch slots managed by switch zones
file = nexus/src/app/mod.rs:993
|
| 77 | 2024-05-13T19:14:02.871Z | INFO | nexus (Nexus): determining switch slot managed by dendrite zone
file = nexus/src/app/mod.rs:1001
zone_address = fd00:1122:3344:101::2
|
| 78 | 2024-05-13T19:14:02.871Z | DEBG | nexus (MgsClient): client request
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12225/local/switch-id
|
| 79 | 2024-05-13T19:14:02.871Z | DEBG | nexus (MgsClient): client response
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12225), path: "/local/switch-id", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "1a0fc562-85ee-4940-9837-f8a7c6e2462b", "content-length": "26", "date": "Mon, 13 May 2024 19:14:02 GMT"} })
|
| 80 | 2024-05-13T19:14:02.871Z | INFO | nexus (Nexus): identified switch slot for dendrite zone
file = nexus/src/app/mod.rs:1006
slot = SpIdentifier {\n slot: 0,\n type_: Switch,\n}
zone_address = fd00:1122:3344:101::2
|
| 81 | 2024-05-13T19:14:02.872Z | INFO | nexus (Nexus): completed mapping dendrite zones to switch slots
file = nexus/src/app/mod.rs:1038
mappings = {\n Switch0: fd00:1122:3344:101::2,\n}
|
| 82 | 2024-05-13T19:14:02.923Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 83 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = switch_port_config_manager
iteration = 1
reason = Timeout
|
| 84 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_servers_external
dns_group = external
iteration = 1
reason = Timeout
|
| 85 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = bfd_manager
iteration = 1
reason = Timeout
|
| 86 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_propagation_internal
dns_group = internal
iteration = 1
reason = Timeout
|
| 87 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = service_zone_nat_tracker
iteration = 1
reason = Timeout
|
| 88 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = external_endpoints
iteration = 1
reason = Timeout
|
| 89 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = metrics_producer_gc
iteration = 1
reason = Timeout
|
| 90 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = nat_v4_garbage_collector
iteration = 1
reason = Timeout
|
| 91 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = region_replacement
iteration = 1
reason = Timeout
|
| 92 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_config_external
dns_group = external
iteration = 1
reason = Timeout
|
| 93 | 2024-05-13T19:14:02.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_servers_internal
dns_group = internal
iteration = 1
reason = Timeout
|
| 94 | 2024-05-13T19:14:02.925Z | WARN | nexus (BackgroundTasks): DNS propagation: skipped
background_task = dns_propagation_internal
dns_group = internal
file = nexus/src/app/background/dns_propagation.rs:61
reason = no config nor servers
|
| 95 | 2024-05-13T19:14:02.927Z | DEBG | nexus (BackgroundTasks): roles
background_task = bfd_manager
roles = RoleSet { roles: {} }
|
| 96 | 2024-05-13T19:14:02.927Z | DEBG | nexus (BackgroundTasks): roles
background_task = nat_v4_garbage_collector
roles = RoleSet { roles: {} }
|
| 97 | 2024-05-13T19:14:02.928Z | WARN | nexus (BackgroundTasks): Metric producer GC: statically disabled pending omicron#5284
background_task = metrics_producer_gc
file = nexus/src/app/background/metrics_producer_gc.rs:43
|
| 98 | 2024-05-13T19:14:02.928Z | WARN | nexus (BackgroundTasks): region replacement task started
background_task = region_replacement
file = nexus/src/app/background/region_replacement.rs:44
|
| 99 | 2024-05-13T19:14:02.928Z | WARN | nexus (BackgroundTasks): region replacement task done
background_task = region_replacement
file = nexus/src/app/background/region_replacement.rs:48
|
| 100 | 2024-05-13T19:14:02.929Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_propagation_internal
dns_group = internal
elapsed = 3.070219ms
iteration = 1
|
| 101 | 2024-05-13T19:14:02.929Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = metrics_producer_gc
elapsed = 2.976795ms
iteration = 1
|
| 102 | 2024-05-13T19:14:02.929Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = region_replacement
elapsed = 3.488024ms
iteration = 1
|
| 103 | 2024-05-13T19:14:02.929Z | DEBG | nexus (BackgroundTasks): reading DNS version
background_task = dns_config_external
dns_group = external
|
| 104 | 2024-05-13T19:14:02.930Z | DEBG | nexus (BackgroundTasks): activating
background_task = instance_watcher
iteration = 1
reason = Timeout
|
| 105 | 2024-05-13T19:14:02.930Z | DEBG | nexus (BackgroundTasks): activating
background_task = inventory_collection
iteration = 1
reason = Timeout
|
| 106 | 2024-05-13T19:14:02.930Z | DEBG | nexus (BackgroundTasks): activating
background_task = service_firewall_rule_propagation
iteration = 1
reason = Timeout
|
| 107 | 2024-05-13T19:14:02.930Z | DEBG | nexus (BackgroundTasks): activating
background_task = blueprint_loader
iteration = 1
reason = Timeout
|
| 108 | 2024-05-13T19:14:02.930Z | DEBG | nexus (BackgroundTasks): activating
background_task = phantom_disks
iteration = 1
reason = Timeout
|
| 109 | 2024-05-13T19:14:02.930Z | WARN | nexus (BackgroundTasks): phantom disk task started
background_task = phantom_disks
file = nexus/src/app/background/phantom_disks.rs:46
|
| 110 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_config_internal
dns_group = internal
iteration = 1
reason = Timeout
|
| 111 | 2024-05-13T19:14:02.931Z | DEBG | nexus (service-firewall-rule-progator): starting background task for service firewall rule propagation
background_task = service_firewall_rule_propagation
|
| 112 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): reading DNS version
background_task = dns_config_internal
dns_group = internal
|
| 113 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): activating
background_task = physical_disk_adoption
iteration = 1
reason = Timeout
|
| 114 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_propagation_external
dns_group = external
iteration = 1
reason = Timeout
|
| 115 | 2024-05-13T19:14:02.931Z | WARN | nexus (BackgroundTasks): DNS propagation: skipped
background_task = dns_propagation_external
dns_group = external
file = nexus/src/app/background/dns_propagation.rs:61
reason = no config nor servers
|
| 116 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): activating
background_task = blueprint_executor
iteration = 1
reason = Timeout
|
| 117 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): roles
background_task = dns_config_external
dns_group = external
roles = RoleSet { roles: {} }
|
| 118 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): roles
background_task = dns_config_internal
dns_group = internal
roles = RoleSet { roles: {} }
|
| 119 | 2024-05-13T19:14:02.931Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_propagation_external
dns_group = external
elapsed = 5.116351ms
iteration = 1
|
| 120 | 2024-05-13T19:14:02.932Z | WARN | nexus (BackgroundTasks): Blueprint execution: skipped
background_task = blueprint_executor
file = nexus/src/app/background/blueprint_execution.rs:57
reason = no blueprint
|
| 121 | 2024-05-13T19:14:02.934Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = blueprint_executor
elapsed = 5.171143ms
iteration = 1
|
| 122 | 2024-05-13T19:14:02.934Z | DEBG | nexus (BackgroundTasks): roles
background_task = external_endpoints
roles = RoleSet { roles: {} }
|
| 123 | 2024-05-13T19:14:02.934Z | DEBG | nexus (BackgroundTasks): roles
background_task = instance_watcher
roles = RoleSet { roles: {} }
|
| 124 | 2024-05-13T19:14:02.934Z | DEBG | nexus (BackgroundTasks): roles
background_task = physical_disk_adoption
roles = RoleSet { roles: {} }
|
| 125 | 2024-05-13T19:14:02.934Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 126 | 2024-05-13T19:14:02.934Z | DEBG | nexus (BackgroundTasks): roles
background_task = inventory_collection
roles = RoleSet { roles: {} }
|
| 127 | 2024-05-13T19:14:02.937Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_firewall_rule_propagation
roles = RoleSet { roles: {} }
|
| 128 | 2024-05-13T19:14:02.941Z | DEBG | nexus (BackgroundTasks): roles
background_task = switch_port_config_manager
roles = RoleSet { roles: {} }
|
| 129 | 2024-05-13T19:14:02.943Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = switch_port_config_manager
resource = Database
result = Ok(())
|
| 130 | 2024-05-13T19:14:02.945Z | DEBG | nexus (DnsResolver): lookup_all_socket_v6 srv
dns_name = _nameservice._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_nameservice._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_nameservice._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 5353, target: Name("070b9603-9dd6-4e45-b3d9-82bd559e0d88.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_nameservice._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 5353, target: Name("24276168-1bfe-4f5e-ad0f-9a95d49e2a0a.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_nameservice._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 5353, target: Name("493f468f-fcee-4e26-92a0-46e7a196cb22.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("493f468f-fcee-4e26-92a0-46e7a196cb22.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:1::1)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 852895795 } })
|
| 131 | 2024-05-13T19:14:02.947Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 132 | 2024-05-13T19:14:02.947Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = dns_config_external
dns_group = external
resource = Database
result = Ok(())
|
| 133 | 2024-05-13T19:14:02.948Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_firewall_rule_propagation
resource = Database
result = Ok(())
|
| 134 | 2024-05-13T19:14:02.948Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = inventory_collection
resource = Database
result = Ok(())
|
| 135 | 2024-05-13T19:14:02.955Z | INFO | nexus (BackgroundTasks): found DNS servers (initial)
addresses = DnsServersList { addresses: [[fd00:1122:3344:2::1]:5353, [fd00:1122:3344:3::1]:5353, [fd00:1122:3344:1::1]:5353] }
background_task = dns_servers_internal
dns_group = internal
file = nexus/src/app/background/dns_servers.rs:113
|
| 136 | 2024-05-13T19:14:02.955Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_servers_internal
dns_group = internal
elapsed = 29.66156ms
iteration = 1
|
| 137 | 2024-05-13T19:14:02.955Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_propagation_internal
dns_group = internal
iteration = 2
reason = Dependency
|
| 138 | 2024-05-13T19:14:02.955Z | WARN | nexus (BackgroundTasks): DNS propagation: skipped
background_task = dns_propagation_internal
dns_group = internal
file = nexus/src/app/background/dns_propagation.rs:69
reason = no config
|
| 139 | 2024-05-13T19:14:02.955Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = instance_watcher
resource = Database
result = Ok(())
|
| 140 | 2024-05-13T19:14:02.955Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = nat_v4_garbage_collector
resource = Database
result = Ok(())
|
| 141 | 2024-05-13T19:14:02.956Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_propagation_internal
dns_group = internal
elapsed = 5.09\u{b5}s
iteration = 2
|
| 142 | 2024-05-13T19:14:02.956Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_zone_nat_tracker
roles = RoleSet { roles: {} }
|
| 143 | 2024-05-13T19:14:02.956Z | DEBG | nexus (DnsResolver): lookup_all_socket_v6 srv
dns_name = _external-dns._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_external-dns._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_external-dns._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 5353, target: Name("20b95a80-edbc-4cb2-bf15-f70e34fde7d0.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("_external-dns._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 5353, target: Name("9ca1980b-674c-45cc-b6bf-d03da0dfcaf7.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("9ca1980b-674c-45cc-b6bf-d03da0dfcaf7.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::9)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 866332021 } })
|
| 144 | 2024-05-13T19:14:02.956Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = dns_config_internal
dns_group = internal
resource = Database
result = Ok(())
|
| 145 | 2024-05-13T19:14:02.956Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = physical_disk_adoption
resource = Database
result = Ok(())
|
| 146 | 2024-05-13T19:14:02.958Z | INFO | nexus (SagaRecoverer): start saga recovery
file = nexus/db-queries/src/db/saga_recovery.rs:77
|
| 147 | 2024-05-13T19:14:02.958Z | DEBG | nexus (DataLoader): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 148 | 2024-05-13T19:14:02.958Z | DEBG | nexus (DataLoader): attempting to create built-in users
|
| 149 | 2024-05-13T19:14:02.958Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 150 | 2024-05-13T19:14:02.958Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_zone_nat_tracker
resource = Database
result = Ok(())
|
| 151 | 2024-05-13T19:14:02.958Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = bfd_manager
resource = Database
result = Ok(())
|
| 152 | 2024-05-13T19:14:02.959Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 153 | 2024-05-13T19:14:02.959Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = external_endpoints
resource = Database
result = Ok(())
|
| 154 | 2024-05-13T19:14:02.960Z | INFO | nexus (BackgroundTasks): found DNS servers (initial)
addresses = DnsServersList { addresses: [[fd00:1122:3344:101::8]:5353, [fd00:1122:3344:101::9]:5353] }
background_task = dns_servers_external
dns_group = external
file = nexus/src/app/background/dns_servers.rs:113
|
| 155 | 2024-05-13T19:14:02.960Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_servers_external
dns_group = external
elapsed = 35.429554ms
iteration = 1
|
| 156 | 2024-05-13T19:14:02.960Z | DEBG | nexus (BackgroundTasks): activating
background_task = dns_propagation_external
dns_group = external
iteration = 2
reason = Dependency
|
| 157 | 2024-05-13T19:14:02.960Z | WARN | nexus (BackgroundTasks): DNS propagation: skipped
background_task = dns_propagation_external
dns_group = external
file = nexus/src/app/background/dns_propagation.rs:69
reason = no config
|
| 158 | 2024-05-13T19:14:02.960Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_propagation_external
dns_group = external
elapsed = 3.21\u{b5}s
iteration = 2
|
| 159 | 2024-05-13T19:14:02.960Z | DEBG | nexus (BackgroundTasks): roles
background_task = dns_config_external
dns_group = external
roles = RoleSet { roles: {} }
|
| 160 | 2024-05-13T19:14:02.961Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = dns_config_external
dns_group = external
resource = Database
result = Ok(())
|
| 161 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /artifacts/{kind}/{name}/{version}
|
| 162 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /bgtasks
|
| 163 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /bgtasks/activate
|
| 164 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /bgtasks/view/{bgtask_name}
|
| 165 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /crucible/0/upstairs/{upstairs_id}/downstairs/{downstairs_id}/stop-request
|
| 166 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /crucible/0/upstairs/{upstairs_id}/downstairs/{downstairs_id}/stopped
|
| 167 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /crucible/0/upstairs/{upstairs_id}/repair/{repair_id}/progress
|
| 168 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /crucible/0/upstairs/{upstairs_id}/repair-finish
|
| 169 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /crucible/0/upstairs/{upstairs_id}/repair-start
|
| 170 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /deployment/blueprints/all
|
| 171 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = DELETE
path = /deployment/blueprints/all/{blueprint_id}
|
| 172 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /deployment/blueprints/all/{blueprint_id}
|
| 173 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /deployment/blueprints/import
|
| 174 | 2024-05-13T19:14:02.972Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /deployment/blueprints/regenerate
|
| 175 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /deployment/blueprints/target
|
| 176 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /deployment/blueprints/target
|
| 177 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = PUT
path = /deployment/blueprints/target/enabled
|
| 178 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /disk/{disk_id}/remove-read-only-parent
|
| 179 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = PUT
path = /disks/{disk_id}
|
| 180 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = PUT
path = /instances/{instance_id}
|
| 181 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /metrics/collectors
|
| 182 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /metrics/collectors/{collector_id}/producers
|
| 183 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /metrics/producers
|
| 184 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /nat/ipv4/changeset/{from_gen}
|
| 185 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /probes/{sled}
|
| 186 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = PUT
path = /racks/{rack_id}/initialization-complete
|
| 187 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /sagas
|
| 188 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /sagas/{saga_id}
|
| 189 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /sled-agents/{sled_id}
|
| 190 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /sled-agents/{sled_id}
|
| 191 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /sled-agents/{sled_id}/firewall-rules-update
|
| 192 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /sleds/add
|
| 193 | 2024-05-13T19:14:02.973Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /sleds/expunge
|
| 194 | 2024-05-13T19:14:02.974Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
path = /sleds/uninitialized
|
| 195 | 2024-05-13T19:14:02.974Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = PUT
path = /switch/{switch_id}
|
| 196 | 2024-05-13T19:14:02.974Z | DEBG | nexus (dropshot_internal): registered endpoint
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
path = /volume/{volume_id}/remove-read-only-parent
|
| 197 | 2024-05-13T19:14:02.974Z | INFO | nexus (dropshot_internal): listening
file = /home/build/.cargo/git/checkouts/dropshot-a4a923d29dccc492/283d897/dropshot/src/server.rs:196
local_addr = [fd00:1122:3344:101::a]:12221
|
| 198 | 2024-05-13T19:14:02.974Z | DEBG | nexus (dropshot_internal): successfully registered DTrace USDT probes
local_addr = [fd00:1122:3344:101::a]:12221
|
| 199 | 2024-05-13T19:14:02.974Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 200 | 2024-05-13T19:14:02.975Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 201 | 2024-05-13T19:14:02.981Z | DEBG | nexus (BackgroundTasks): roles
background_task = dns_config_internal
dns_group = internal
roles = RoleSet { roles: {} }
|
| 202 | 2024-05-13T19:14:02.981Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = dns_config_internal
dns_group = internal
resource = Database
result = Ok(())
|
| 203 | 2024-05-13T19:14:02.996Z | ERRO | nexus (service-firewall-rule-progator): failed to propagate service firewall rules
background_task = service_firewall_rule_propagation
error = ObjectNotFound { type_name: Vpc, lookup_type: ById(001de000-074c-4000-8000-000000000000) }
file = nexus/src/app/background/service_firewall_rules.rs:54
|
| 204 | 2024-05-13T19:14:02.996Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = service_firewall_rule_propagation
elapsed = 69.843904ms
iteration = 1
|
| 205 | 2024-05-13T19:14:03.003Z | DEBG | nexus (DnsResolver): lookup_all_ipv6 srv
dns_name = _dendrite._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_dendrite._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_dendrite._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 12224, target: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::2)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 913127198 } })
|
| 206 | 2024-05-13T19:14:03.004Z | INFO | nexus (BackgroundTasks): Determining switch slots managed by switch zones
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:993
|
| 207 | 2024-05-13T19:14:03.007Z | WARN | nexus (BackgroundTasks): phantom disk task done
background_task = phantom_disks
file = nexus/src/app/background/phantom_disks.rs:92
|
| 208 | 2024-05-13T19:14:03.007Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = phantom_disks
elapsed = 81.510706ms
iteration = 1
|
| 209 | 2024-05-13T19:14:03.027Z | DEBG | nexus (DnsResolver): lookup_all_ipv6 srv
dns_name = _dendrite._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_dendrite._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_dendrite._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 12224, target: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::2)) }], valid_until: Instant { tv_sec: 2196, tv_nsec: 937549203 } })
|
| 210 | 2024-05-13T19:14:03.028Z | INFO | nexus (BackgroundTasks): Determining switch slots managed by switch zones
background_task = bfd_manager
file = nexus/src/app/mod.rs:993
|
| 211 | 2024-05-13T19:14:03.033Z | INFO | nexus (DataLoader): created 0 built-in users
file = nexus/db-queries/src/db/datastore/silo_user.rs:394
|
| 212 | 2024-05-13T19:14:03.033Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 213 | 2024-05-13T19:14:03.035Z | DEBG | nexus (DataLoader): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 214 | 2024-05-13T19:14:03.035Z | DEBG | nexus (DataLoader): attempting to create built-in roles
|
| 215 | 2024-05-13T19:14:03.035Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 216 | 2024-05-13T19:14:03.036Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 217 | 2024-05-13T19:14:03.049Z | INFO | nexus (BackgroundTasks): determining switch slot managed by dendrite zone
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:1001
zone_address = fd00:1122:3344:101::2
|
| 218 | 2024-05-13T19:14:03.050Z | DEBG | nexus (MgsClient): client request
background_task = nat_v4_garbage_collector
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12225/local/switch-id
|
| 219 | 2024-05-13T19:14:03.051Z | DEBG | nexus (MgsClient): client response
background_task = nat_v4_garbage_collector
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12225), path: "/local/switch-id", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "4f9702af-e3f5-484e-bae4-c6e39b960b4b", "content-length": "26", "date": "Mon, 13 May 2024 19:14:02 GMT"} })
|
| 220 | 2024-05-13T19:14:03.052Z | INFO | nexus (DataLoader): created 0 built-in roles
file = nexus/db-queries/src/db/datastore/role.rs:87
|
| 221 | 2024-05-13T19:14:03.053Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 222 | 2024-05-13T19:14:03.054Z | DEBG | nexus (DataLoader): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 223 | 2024-05-13T19:14:03.054Z | DEBG | nexus (DataLoader): attempting to create built-in role assignments
|
| 224 | 2024-05-13T19:14:03.054Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 225 | 2024-05-13T19:14:03.054Z | INFO | nexus (BackgroundTasks): identified switch slot for dendrite zone
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:1006
slot = SpIdentifier {\n slot: 0,\n type_: Switch,\n}
zone_address = fd00:1122:3344:101::2
|
| 226 | 2024-05-13T19:14:03.054Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 227 | 2024-05-13T19:14:03.055Z | INFO | nexus (BackgroundTasks): completed mapping dendrite zones to switch slots
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:1038
mappings = {\n Switch0: fd00:1122:3344:101::2,\n}
|
| 228 | 2024-05-13T19:14:03.091Z | DEBG | nexus (BackgroundTasks): roles
background_task = switch_port_config_manager
roles = RoleSet { roles: {} }
|
| 229 | 2024-05-13T19:14:03.091Z | DEBG | nexus (BackgroundTasks): roles
background_task = instance_watcher
roles = RoleSet { roles: {} }
|
| 230 | 2024-05-13T19:14:03.091Z | DEBG | nexus (BackgroundTasks): roles
background_task = inventory_collection
roles = RoleSet { roles: {} }
|
| 231 | 2024-05-13T19:14:03.091Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_zone_nat_tracker
roles = RoleSet { roles: {} }
|
| 232 | 2024-05-13T19:14:03.093Z | INFO | nexus (BackgroundTasks): determining switch slot managed by dendrite zone
background_task = bfd_manager
file = nexus/src/app/mod.rs:1001
zone_address = fd00:1122:3344:101::2
|
| 233 | 2024-05-13T19:14:03.093Z | DEBG | nexus (MgsClient): client request
background_task = bfd_manager
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12225/local/switch-id
|
| 234 | 2024-05-13T19:14:03.093Z | DEBG | nexus (MgsClient): client response
background_task = bfd_manager
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12225), path: "/local/switch-id", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "8a1f953a-4b55-44ff-91fd-a9aa0bb8f07f", "content-length": "26", "date": "Mon, 13 May 2024 19:14:02 GMT"} })
|
| 235 | 2024-05-13T19:14:03.093Z | INFO | nexus (BackgroundTasks): identified switch slot for dendrite zone
background_task = bfd_manager
file = nexus/src/app/mod.rs:1006
slot = SpIdentifier {\n slot: 0,\n type_: Switch,\n}
zone_address = fd00:1122:3344:101::2
|
| 236 | 2024-05-13T19:14:03.094Z | INFO | nexus (SagaRecoverer): listed sagas (0 total)
file = nexus/db-queries/src/db/saga_recovery.rs:113
|
| 237 | 2024-05-13T19:14:03.094Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 238 | 2024-05-13T19:14:03.095Z | INFO | nexus (BackgroundTasks): completed mapping dendrite zones to switch slots
background_task = bfd_manager
file = nexus/src/app/mod.rs:1038
mappings = {\n Switch0: fd00:1122:3344:101::2,\n}
|
| 239 | 2024-05-13T19:14:03.095Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = instance_watcher
resource = Fleet
result = Err(Forbidden)
|
| 240 | 2024-05-13T19:14:03.095Z | ERRO | nexus (BackgroundTasks): sled instances by sled agent query failed: Forbidden
background_task = instance_watcher
file = nexus/src/app/background/instance_watcher.rs:394
|
| 241 | 2024-05-13T19:14:03.096Z | DEBG | nexus (BackgroundTasks): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = inventory_collection
resource = Inventory
result = Err(Forbidden)
|
| 242 | 2024-05-13T19:14:03.096Z | WARN | nexus (BackgroundTasks): inventory collection failed
background_task = inventory_collection
error = failed to collect inventory: pruning old collections: Forbidden
file = nexus/src/app/background/inventory_collection.rs:76
|
| 243 | 2024-05-13T19:14:03.096Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = inventory_collection
elapsed = 170.408806ms
iteration = 1
|
| 244 | 2024-05-13T19:14:03.096Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = switch_port_config_manager
resource = Fleet
result = Err(Forbidden)
|
| 245 | 2024-05-13T19:14:03.096Z | ERRO | nexus (BackgroundTasks): failed to retrieve racks from database
background_task = switch_port_config_manager
error = Forbidden
file = nexus/src/app/background/sync_switch_configuration.rs:288
|
| 246 | 2024-05-13T19:14:03.096Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = switch_port_config_manager
elapsed = 171.69396ms
iteration = 1
|
| 247 | 2024-05-13T19:14:03.097Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_zone_nat_tracker
resource = Inventory
result = Err(Forbidden)
|
| 248 | 2024-05-13T19:14:03.097Z | ERRO | nexus (BackgroundTasks): failed to collect inventory
background_task = service_zone_nat_tracker
error = Forbidden
file = nexus/src/app/background/sync_service_zone_nat.rs:72
|
| 249 | 2024-05-13T19:14:03.097Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = service_zone_nat_tracker
elapsed = 172.562211ms
iteration = 1
|
| 250 | 2024-05-13T19:14:03.098Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = instance_watcher
elapsed = 171.299736ms
iteration = 1
|
| 251 | 2024-05-13T19:14:03.098Z | DEBG | nexus (BackgroundTasks): roles
background_task = physical_disk_adoption
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 252 | 2024-05-13T19:14:03.098Z | DEBG | nexus (BackgroundTasks): roles
background_task = external_endpoints
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 253 | 2024-05-13T19:14:03.098Z | DEBG | nexus (BackgroundTasks): roles
background_task = dns_config_external
dns_group = external
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 254 | 2024-05-13T19:14:03.098Z | DEBG | nexus (BackgroundTasks): roles
background_task = dns_config_internal
dns_group = internal
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 255 | 2024-05-13T19:14:03.099Z | WARN | nexus: Cannot look up rack: Object (of type ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3)) not found: rack
file = nexus/src/app/rack.rs:699
|
| 256 | 2024-05-13T19:14:03.100Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = BlueprintConfig
result = Err(Forbidden)
|
| 257 | 2024-05-13T19:14:03.100Z | WARN | nexus (BackgroundTasks): failed to read target blueprint
background_task = blueprint_loader
error = Forbidden
file = nexus/src/app/background/blueprint_load.rs:69
|
| 258 | 2024-05-13T19:14:03.100Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = blueprint_loader
elapsed = 174.832792ms
iteration = 1
|
| 259 | 2024-05-13T19:14:03.102Z | DEBG | nexus (BackgroundTasks): authorize result
action = ListChildren
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = external_endpoints
resource = Fleet
result = Ok(())
|
| 260 | 2024-05-13T19:14:03.102Z | DEBG | nexus (BackgroundTasks): roles
background_task = external_endpoints
roles = RoleSet { roles: {} }
|
| 261 | 2024-05-13T19:14:03.102Z | INFO | nexus (DataLoader): created 0 built-in role assignments
file = nexus/db-queries/src/db/datastore/role.rs:116
|
| 262 | 2024-05-13T19:14:03.102Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 263 | 2024-05-13T19:14:03.102Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = physical_disk_adoption
resource = Fleet
result = Ok(())
|
| 264 | 2024-05-13T19:14:03.102Z | DEBG | nexus (BackgroundTasks): roles
background_task = physical_disk_adoption
roles = RoleSet { roles: {} }
|
| 265 | 2024-05-13T19:14:03.102Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = external_endpoints
resource = Database
result = Ok(())
|
| 266 | 2024-05-13T19:14:03.102Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = physical_disk_adoption
resource = Database
result = Ok(())
|
| 267 | 2024-05-13T19:14:03.104Z | DEBG | nexus (DataLoader): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 268 | 2024-05-13T19:14:03.104Z | DEBG | nexus (DataLoader): attempting to create built-in silos
|
| 269 | 2024-05-13T19:14:03.104Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 270 | 2024-05-13T19:14:03.104Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = dns_config_external
dns_group = external
resource = DnsConfig
result = Ok(())
|
| 271 | 2024-05-13T19:14:03.104Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 272 | 2024-05-13T19:14:03.104Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = dns_config_internal
dns_group = internal
resource = DnsConfig
result = Ok(())
|
| 273 | 2024-05-13T19:14:03.107Z | INFO | nexus (BackgroundTasks): Physical Disk Adoption: Rack not yet initialized
background_task = physical_disk_adoption
file = nexus/src/app/background/physical_disk_adoption.rs:79
rack_id = 6307bf43-24f1-4bbd-994f-0f6946e3b5f3
|
| 274 | 2024-05-13T19:14:03.107Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = physical_disk_adoption
elapsed = 181.871831ms
iteration = 1
|
| 275 | 2024-05-13T19:14:03.112Z | DEBG | nexus (BackgroundTasks): roles
background_task = external_endpoints
roles = RoleSet { roles: {} }
|
| 276 | 2024-05-13T19:14:03.112Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = external_endpoints
resource = Database
result = Ok(())
|
| 277 | 2024-05-13T19:14:03.115Z | DEBG | nexus (BackgroundTasks): roles
background_task = external_endpoints
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 278 | 2024-05-13T19:14:03.119Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = external_endpoints
resource = DnsConfig
result = Ok(())
|
| 279 | 2024-05-13T19:14:03.119Z | DEBG | nexus (BackgroundTasks): roles
background_task = external_endpoints
roles = RoleSet { roles: {} }
|
| 280 | 2024-05-13T19:14:03.119Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = external_endpoints
resource = Database
result = Ok(())
|
| 281 | 2024-05-13T19:14:03.126Z | DEBG | nexus (DpdClient): client request
background_task = nat_v4_garbage_collector
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12224/rpw/nat/ipv4/gen
|
| 282 | 2024-05-13T19:14:03.128Z | DEBG | nexus (DpdClient): client response
background_task = nat_v4_garbage_collector
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12224), path: "/rpw/nat/ipv4/gen", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "90b95a26-a0e8-4c88-9324-8d81d68c3862", "content-length": "1", "date": "Mon, 13 May 2024 19:14:02 GMT"} })
|
| 283 | 2024-05-13T19:14:03.130Z | DEBG | nexus (BackgroundTasks): roles
background_task = nat_v4_garbage_collector
roles = RoleSet { roles: {} }
|
| 284 | 2024-05-13T19:14:03.130Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = nat_v4_garbage_collector
resource = Database
result = Ok(())
|
| 285 | 2024-05-13T19:14:03.143Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = nat_v4_garbage_collector
elapsed = 218.536729ms
iteration = 1
|
| 286 | 2024-05-13T19:14:03.147Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = bfd_manager
elapsed = 222.006862ms
iteration = 1
|
| 287 | 2024-05-13T19:14:03.151Z | WARN | nexus (BackgroundTasks): failed to read DNS config
background_task = dns_config_external
dns_group = external
error = Internal Error: expected exactly one latest version for DNS group External, found 0
file = nexus/src/app/background/dns_config.rs:72
|
| 288 | 2024-05-13T19:14:03.151Z | WARN | nexus (BackgroundTasks): failed to read DNS config
background_task = dns_config_internal
dns_group = internal
error = Internal Error: expected exactly one latest version for DNS group Internal, found 0
file = nexus/src/app/background/dns_config.rs:72
|
| 289 | 2024-05-13T19:14:03.151Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_config_external
dns_group = external
elapsed = 226.217551ms
iteration = 1
|
| 290 | 2024-05-13T19:14:03.151Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = dns_config_internal
dns_group = internal
elapsed = 226.260973ms
iteration = 1
|
| 291 | 2024-05-13T19:14:03.159Z | WARN | nexus (BackgroundTasks): failed to read Silo/DNS/TLS configuration
background_task = external_endpoints
error = Internal Error: expected at least one external DNS zone
file = nexus/src/app/background/external_endpoints.rs:55
|
| 292 | 2024-05-13T19:14:03.159Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = external_endpoints
elapsed = 234.540426ms
iteration = 1
|
| 293 | 2024-05-13T19:14:03.216Z | INFO | nexus (DataLoader): created 0 built-in silos
file = nexus/db-queries/src/db/datastore/silo.rs:95
|
| 294 | 2024-05-13T19:14:03.219Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 295 | 2024-05-13T19:14:03.219Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 296 | 2024-05-13T19:14:03.222Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 297 | 2024-05-13T19:14:03.223Z | DEBG | nexus (DataLoader): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 298 | 2024-05-13T19:14:03.223Z | DEBG | nexus (DataLoader): attempting to create built-in projects
|
| 299 | 2024-05-13T19:14:03.224Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 300 | 2024-05-13T19:14:03.224Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 301 | 2024-05-13T19:14:03.228Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 302 | 2024-05-13T19:14:03.228Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 303 | 2024-05-13T19:14:03.229Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 304 | 2024-05-13T19:14:03.229Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 305 | 2024-05-13T19:14:03.252Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 306 | 2024-05-13T19:14:03.253Z | DEBG | nexus (DataLoader): authorize result
action = CreateChild
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Silo { parent: Fleet, key: 001de000-5110-4000-8000-000000000001, lookup_type: ById(001de000-5110-4000-8000-000000000001) }
result = Ok(())
|
| 307 | 2024-05-13T19:14:03.253Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 308 | 2024-05-13T19:14:03.254Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 309 | 2024-05-13T19:14:03.254Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 310 | 2024-05-13T19:14:03.255Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 311 | 2024-05-13T19:14:03.255Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 312 | 2024-05-13T19:14:03.257Z | DEBG | nexus (DataLoader): authorize result
action = CreateChild
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Silo { parent: Fleet, key: 001de000-5110-4000-8000-000000000001, lookup_type: ById(001de000-5110-4000-8000-000000000001) }
result = Ok(())
|
| 313 | 2024-05-13T19:14:03.257Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 314 | 2024-05-13T19:14:03.257Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 315 | 2024-05-13T19:14:03.287Z | INFO | nexus (DataLoader): created built-in services project
file = nexus/db-queries/src/db/datastore/project.rs:122
|
| 316 | 2024-05-13T19:14:03.287Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 317 | 2024-05-13T19:14:03.288Z | DEBG | nexus (DataLoader): authorize result
action = Modify
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 318 | 2024-05-13T19:14:03.288Z | DEBG | nexus (DataLoader): attempting to create built-in VPCs
|
| 319 | 2024-05-13T19:14:03.288Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 320 | 2024-05-13T19:14:03.288Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 321 | 2024-05-13T19:14:03.290Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 322 | 2024-05-13T19:14:03.290Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 323 | 2024-05-13T19:14:03.291Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 324 | 2024-05-13T19:14:03.291Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 325 | 2024-05-13T19:14:03.292Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 326 | 2024-05-13T19:14:03.292Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 327 | 2024-05-13T19:14:03.293Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 328 | 2024-05-13T19:14:03.293Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 329 | 2024-05-13T19:14:03.294Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 330 | 2024-05-13T19:14:03.297Z | DEBG | nexus (DataLoader): authorize result
action = CreateChild
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Project { parent: Silo { parent: Fleet, key: 001de000-5110-4000-8000-000000000001, lookup_type: ById(001de000-5110-4000-8000-000000000001) }, key: 001de000-4401-4000-8000-000000000000, lookup_type: ById(001de000-4401-4000-8000-000000000000) }
result = Ok(())
|
| 331 | 2024-05-13T19:14:03.297Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 332 | 2024-05-13T19:14:03.297Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 333 | 2024-05-13T19:14:03.297Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 334 | 2024-05-13T19:14:03.298Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 335 | 2024-05-13T19:14:03.299Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 336 | 2024-05-13T19:14:03.299Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 337 | 2024-05-13T19:14:03.299Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 338 | 2024-05-13T19:14:03.302Z | DEBG | nexus (DataLoader): authorize result
action = CreateChild
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Project { parent: Silo { parent: Fleet, key: 001de000-5110-4000-8000-000000000001, lookup_type: ById(001de000-5110-4000-8000-000000000001) }, key: 001de000-4401-4000-8000-000000000000, lookup_type: ById(001de000-4401-4000-8000-000000000000) }
result = Ok(())
|
| 339 | 2024-05-13T19:14:03.302Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 340 | 2024-05-13T19:14:03.302Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 341 | 2024-05-13T19:14:03.319Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 342 | 2024-05-13T19:14:03.319Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 343 | 2024-05-13T19:14:03.320Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 344 | 2024-05-13T19:14:03.321Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 345 | 2024-05-13T19:14:03.342Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 346 | 2024-05-13T19:14:03.343Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 347 | 2024-05-13T19:14:03.343Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 348 | 2024-05-13T19:14:03.343Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 349 | 2024-05-13T19:14:03.344Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 350 | 2024-05-13T19:14:03.347Z | DEBG | nexus (DataLoader): authorize result
action = CreateChild
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Vpc { parent: Project { parent: Silo { parent: Fleet, key: 001de000-5110-4000-8000-000000000001, lookup_type: ById(001de000-5110-4000-8000-000000000001) }, key: 001de000-4401-4000-8000-000000000000, lookup_type: ById(001de000-4401-4000-8000-000000000000) }, key: 001de000-074c-4000-8000-000000000000, lookup_type: ByName("oxide-services") }
result = Ok(())
|
| 351 | 2024-05-13T19:14:03.347Z | DEBG | nexus (DataLoader): roles
roles = RoleSet { roles: {} }
|
| 352 | 2024-05-13T19:14:03.347Z | DEBG | nexus (DataLoader): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000001, .. })
resource = Database
result = Ok(())
|
| 353 | 2024-05-13T19:14:03.378Z | ERRO | nexus (DataLoader): gave up trying to populate built-in PopulateBuiltinVpcs
error_message = InternalError { internal_message: "Unknown diesel error creating VpcRouter called \\"system\\": Record not found" }
file = nexus/src/populate.rs:126
|
| 354 | 2024-05-13T19:14:03.378Z | ERRO | nexus: populate failed
file = nexus/src/app/mod.rs:487
|
| 355 | 2024-05-13T19:14:04.661Z | INFO | nexus (dropshot_internal): accepted connection
file = /home/build/.cargo/git/checkouts/dropshot-a4a923d29dccc492/283d897/dropshot/src/server.rs:766
local_addr = [fd00:1122:3344:101::a]:12221
remote_addr = [fd00:1122:3344:101::d]:40856
|
| 356 | 2024-05-13T19:14:04.668Z | DEBG | nexus (dropshot_internal): roles
actor_id = 001de000-05e4-4000-8000-000000000002
authenticated = true
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
remote_addr = [fd00:1122:3344:101::d]:40856
req_id = 28d81d85-855a-4d62-8f57-36a8b7329fa1
roles = RoleSet { roles: {} }
uri = /metrics/collectors
|
| 357 | 2024-05-13T19:14:04.668Z | DEBG | nexus (dropshot_internal): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
actor_id = 001de000-05e4-4000-8000-000000000002
authenticated = true
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
remote_addr = [fd00:1122:3344:101::d]:40856
req_id = 28d81d85-855a-4d62-8f57-36a8b7329fa1
resource = Database
result = Ok(())
uri = /metrics/collectors
|
| 358 | 2024-05-13T19:14:04.685Z | INFO | nexus: registered new oximeter metric collection server
address = [fd00:1122:3344:101::d]:12223
collector_id = 3cfb4634-154c-4a6c-9a02-7ae58bc8785c
file = nexus/src/app/oximeter.rs:88
|
| 359 | 2024-05-13T19:14:04.686Z | INFO | nexus (dropshot_internal): request completed
file = /home/build/.cargo/git/checkouts/dropshot-a4a923d29dccc492/283d897/dropshot/src/server.rs:878
latency_us = 24577
local_addr = [fd00:1122:3344:101::a]:12221
method = POST
remote_addr = [fd00:1122:3344:101::d]:40856
req_id = 28d81d85-855a-4d62-8f57-36a8b7329fa1
response_code = 204
uri = /metrics/collectors
|
| 360 | 2024-05-13T19:14:04.731Z | INFO | nexus (dropshot_internal): accepted connection
file = /home/build/.cargo/git/checkouts/dropshot-a4a923d29dccc492/283d897/dropshot/src/server.rs:766
local_addr = [fd00:1122:3344:101::a]:12221
remote_addr = [fd00:1122:3344:101::d]:35454
|
| 361 | 2024-05-13T19:14:04.733Z | DEBG | nexus (dropshot_internal): roles
actor_id = 001de000-05e4-4000-8000-000000000002
authenticated = true
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
remote_addr = [fd00:1122:3344:101::d]:35454
req_id = e2fd4288-b9d6-4e3e-b63b-6da8bafb6251
roles = RoleSet { roles: {} }
uri = /metrics/collectors/3cfb4634-154c-4a6c-9a02-7ae58bc8785c/producers?sort_by=id_ascending
|
| 362 | 2024-05-13T19:14:04.734Z | DEBG | nexus (dropshot_internal): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
actor_id = 001de000-05e4-4000-8000-000000000002
authenticated = true
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
remote_addr = [fd00:1122:3344:101::d]:35454
req_id = e2fd4288-b9d6-4e3e-b63b-6da8bafb6251
resource = Database
result = Ok(())
uri = /metrics/collectors/3cfb4634-154c-4a6c-9a02-7ae58bc8785c/producers?sort_by=id_ascending
|
| 363 | 2024-05-13T19:14:04.739Z | INFO | nexus (dropshot_internal): request completed
file = /home/build/.cargo/git/checkouts/dropshot-a4a923d29dccc492/283d897/dropshot/src/server.rs:878
latency_us = 7721
local_addr = [fd00:1122:3344:101::a]:12221
method = GET
remote_addr = [fd00:1122:3344:101::d]:35454
req_id = e2fd4288-b9d6-4e3e-b63b-6da8bafb6251
response_code = 200
uri = /metrics/collectors/3cfb4634-154c-4a6c-9a02-7ae58bc8785c/producers?sort_by=id_ascending
|
| 364 | 2024-05-13T19:14:05.100Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 365 | 2024-05-13T19:14:05.100Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 366 | 2024-05-13T19:14:05.101Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 367 | 2024-05-13T19:14:05.101Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 368 | 2024-05-13T19:14:05.102Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 369 | 2024-05-13T19:14:05.105Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 370 | 2024-05-13T19:14:05.105Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 371 | 2024-05-13T19:14:07.106Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 372 | 2024-05-13T19:14:07.107Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 373 | 2024-05-13T19:14:07.108Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 374 | 2024-05-13T19:14:07.108Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 375 | 2024-05-13T19:14:07.129Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 376 | 2024-05-13T19:14:07.132Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 377 | 2024-05-13T19:14:07.132Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 378 | 2024-05-13T19:14:09.133Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 379 | 2024-05-13T19:14:09.134Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 380 | 2024-05-13T19:14:09.135Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 381 | 2024-05-13T19:14:09.135Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 382 | 2024-05-13T19:14:09.136Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 383 | 2024-05-13T19:14:09.138Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 384 | 2024-05-13T19:14:09.138Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 385 | 2024-05-13T19:14:11.140Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 386 | 2024-05-13T19:14:11.140Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 387 | 2024-05-13T19:14:11.141Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 388 | 2024-05-13T19:14:11.141Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 389 | 2024-05-13T19:14:11.142Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 390 | 2024-05-13T19:14:11.145Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 391 | 2024-05-13T19:14:11.145Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 392 | 2024-05-13T19:14:12.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = blueprint_loader
iteration = 2
reason = Timeout
|
| 393 | 2024-05-13T19:14:12.925Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 394 | 2024-05-13T19:14:12.925Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 395 | 2024-05-13T19:14:12.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 396 | 2024-05-13T19:14:12.929Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = BlueprintConfig
result = Ok(())
|
| 397 | 2024-05-13T19:14:12.929Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 398 | 2024-05-13T19:14:12.929Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 399 | 2024-05-13T19:14:12.930Z | WARN | nexus (BackgroundTasks): failed to read target blueprint
background_task = blueprint_loader
error = Internal Error: no target blueprint set
file = nexus/src/app/background/blueprint_load.rs:69
|
| 400 | 2024-05-13T19:14:12.930Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = blueprint_loader
elapsed = 5.755103ms
iteration = 2
|
| 401 | 2024-05-13T19:14:13.146Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 402 | 2024-05-13T19:14:13.146Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 403 | 2024-05-13T19:14:13.147Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 404 | 2024-05-13T19:14:13.147Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 405 | 2024-05-13T19:14:13.148Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 406 | 2024-05-13T19:14:13.151Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 407 | 2024-05-13T19:14:13.151Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 408 | 2024-05-13T19:14:15.152Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 409 | 2024-05-13T19:14:15.152Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 410 | 2024-05-13T19:14:15.153Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 411 | 2024-05-13T19:14:15.153Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 412 | 2024-05-13T19:14:15.154Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 413 | 2024-05-13T19:14:15.157Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 414 | 2024-05-13T19:14:15.157Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 415 | 2024-05-13T19:14:17.158Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 416 | 2024-05-13T19:14:17.159Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 417 | 2024-05-13T19:14:17.159Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 418 | 2024-05-13T19:14:17.160Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 419 | 2024-05-13T19:14:17.161Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 420 | 2024-05-13T19:14:17.163Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 421 | 2024-05-13T19:14:17.163Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 422 | 2024-05-13T19:14:19.165Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 423 | 2024-05-13T19:14:19.165Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 424 | 2024-05-13T19:14:19.166Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 425 | 2024-05-13T19:14:19.167Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 426 | 2024-05-13T19:14:19.168Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 427 | 2024-05-13T19:14:19.170Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 428 | 2024-05-13T19:14:19.170Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 429 | 2024-05-13T19:14:21.172Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 430 | 2024-05-13T19:14:21.172Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 431 | 2024-05-13T19:14:21.173Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 432 | 2024-05-13T19:14:21.173Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 433 | 2024-05-13T19:14:21.175Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 434 | 2024-05-13T19:14:21.177Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 435 | 2024-05-13T19:14:21.177Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 436 | 2024-05-13T19:14:22.925Z | DEBG | nexus (BackgroundTasks): activating
background_task = blueprint_loader
iteration = 3
reason = Timeout
|
| 437 | 2024-05-13T19:14:22.925Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 438 | 2024-05-13T19:14:22.925Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 439 | 2024-05-13T19:14:22.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 440 | 2024-05-13T19:14:22.929Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = BlueprintConfig
result = Ok(())
|
| 441 | 2024-05-13T19:14:22.929Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 442 | 2024-05-13T19:14:22.929Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 443 | 2024-05-13T19:14:22.931Z | WARN | nexus (BackgroundTasks): failed to read target blueprint
background_task = blueprint_loader
error = Internal Error: no target blueprint set
file = nexus/src/app/background/blueprint_load.rs:69
|
| 444 | 2024-05-13T19:14:22.931Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = blueprint_loader
elapsed = 5.884678ms
iteration = 3
|
| 445 | 2024-05-13T19:14:23.178Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 446 | 2024-05-13T19:14:23.178Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 447 | 2024-05-13T19:14:23.179Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 448 | 2024-05-13T19:14:23.179Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 449 | 2024-05-13T19:14:23.180Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 450 | 2024-05-13T19:14:23.183Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 451 | 2024-05-13T19:14:23.183Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 452 | 2024-05-13T19:14:25.184Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 453 | 2024-05-13T19:14:25.184Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 454 | 2024-05-13T19:14:25.185Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 455 | 2024-05-13T19:14:25.185Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 456 | 2024-05-13T19:14:25.186Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 457 | 2024-05-13T19:14:25.189Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 458 | 2024-05-13T19:14:25.189Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 459 | 2024-05-13T19:14:27.190Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 460 | 2024-05-13T19:14:27.191Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 461 | 2024-05-13T19:14:27.191Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 462 | 2024-05-13T19:14:27.192Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 463 | 2024-05-13T19:14:27.192Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 464 | 2024-05-13T19:14:27.195Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 465 | 2024-05-13T19:14:27.195Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 466 | 2024-05-13T19:14:29.196Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 467 | 2024-05-13T19:14:29.197Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 468 | 2024-05-13T19:14:29.197Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 469 | 2024-05-13T19:14:29.197Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 470 | 2024-05-13T19:14:29.198Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 471 | 2024-05-13T19:14:29.201Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 472 | 2024-05-13T19:14:29.201Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 473 | 2024-05-13T19:14:31.202Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 474 | 2024-05-13T19:14:31.203Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 475 | 2024-05-13T19:14:31.204Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 476 | 2024-05-13T19:14:31.204Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 477 | 2024-05-13T19:14:31.205Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 478 | 2024-05-13T19:14:31.207Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 479 | 2024-05-13T19:14:31.207Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 480 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = blueprint_loader
iteration = 4
reason = Timeout
|
| 481 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = service_zone_nat_tracker
iteration = 2
reason = Timeout
|
| 482 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_zone_nat_tracker
roles = RoleSet { roles: {} }
|
| 483 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 484 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = phantom_disks
iteration = 2
reason = Timeout
|
| 485 | 2024-05-13T19:14:32.926Z | WARN | nexus (BackgroundTasks): phantom disk task started
background_task = phantom_disks
file = nexus/src/app/background/phantom_disks.rs:46
|
| 486 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = nat_v4_garbage_collector
iteration = 2
reason = Timeout
|
| 487 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = region_replacement
iteration = 2
reason = Timeout
|
| 488 | 2024-05-13T19:14:32.926Z | WARN | nexus (BackgroundTasks): region replacement task started
background_task = region_replacement
file = nexus/src/app/background/region_replacement.rs:44
|
| 489 | 2024-05-13T19:14:32.926Z | WARN | nexus (BackgroundTasks): region replacement task done
background_task = region_replacement
file = nexus/src/app/background/region_replacement.rs:48
|
| 490 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = physical_disk_adoption
iteration = 2
reason = Timeout
|
| 491 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = nat_v4_garbage_collector
roles = RoleSet { roles: {} }
|
| 492 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = region_replacement
elapsed = 6.56\u{b5}s
iteration = 2
|
| 493 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = switch_port_config_manager
iteration = 2
reason = Timeout
|
| 494 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): activating
background_task = bfd_manager
iteration = 2
reason = Timeout
|
| 495 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = physical_disk_adoption
roles = RoleSet { roles: {} }
|
| 496 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = bfd_manager
roles = RoleSet { roles: {} }
|
| 497 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): roles
background_task = switch_port_config_manager
roles = RoleSet { roles: {} }
|
| 498 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 499 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_zone_nat_tracker
resource = Database
result = Ok(())
|
| 500 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = bfd_manager
resource = Database
result = Ok(())
|
| 501 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = physical_disk_adoption
resource = Database
result = Ok(())
|
| 502 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = nat_v4_garbage_collector
resource = Database
result = Ok(())
|
| 503 | 2024-05-13T19:14:32.926Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = switch_port_config_manager
resource = Database
result = Ok(())
|
| 504 | 2024-05-13T19:14:32.927Z | DEBG | nexus (BackgroundTasks): activating
background_task = instance_watcher
iteration = 2
reason = Timeout
|
| 505 | 2024-05-13T19:14:32.927Z | DEBG | nexus (BackgroundTasks): roles
background_task = instance_watcher
roles = RoleSet { roles: {} }
|
| 506 | 2024-05-13T19:14:32.927Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 507 | 2024-05-13T19:14:32.927Z | DEBG | nexus (BackgroundTasks): roles
background_task = switch_port_config_manager
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 508 | 2024-05-13T19:14:32.927Z | WARN | nexus (BackgroundTasks): phantom disk task done
background_task = phantom_disks
file = nexus/src/app/background/phantom_disks.rs:92
|
| 509 | 2024-05-13T19:14:32.927Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = instance_watcher
resource = Database
result = Ok(())
|
| 510 | 2024-05-13T19:14:32.927Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = phantom_disks
elapsed = 1.70609ms
iteration = 2
|
| 511 | 2024-05-13T19:14:32.928Z | DEBG | nexus (BackgroundTasks): roles
background_task = physical_disk_adoption
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 512 | 2024-05-13T19:14:32.929Z | DEBG | nexus (BackgroundTasks): roles
background_task = instance_watcher
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 513 | 2024-05-13T19:14:32.929Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_zone_nat_tracker
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 514 | 2024-05-13T19:14:32.930Z | DEBG | nexus (DnsResolver): lookup_all_ipv6 srv
dns_name = _dendrite._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_dendrite._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_dendrite._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 12224, target: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::2)) }], valid_until: Instant { tv_sec: 2226, tv_nsec: 839347455 } })
|
| 515 | 2024-05-13T19:14:32.931Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = switch_port_config_manager
resource = Fleet
result = Ok(())
|
| 516 | 2024-05-13T19:14:32.931Z | DEBG | nexus (BackgroundTasks): roles
background_task = switch_port_config_manager
roles = RoleSet { roles: {} }
|
| 517 | 2024-05-13T19:14:32.931Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = switch_port_config_manager
resource = Database
result = Ok(())
|
| 518 | 2024-05-13T19:14:32.931Z | DEBG | nexus (DnsResolver): lookup_all_ipv6 srv
dns_name = _dendrite._tcp.control-plane.oxide.internal
response = SrvLookup(Lookup { query: Query { name: Name("_dendrite._tcp.control-plane.oxide.internal"), query_type: SRV, query_class: IN }, records: [Record { name_labels: Name("_dendrite._tcp.control-plane.oxide.internal."), rr_type: SRV, dns_class: IN, ttl: 0, rdata: Some(SRV(SRV { priority: 0, weight: 0, port: 12224, target: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal.") })) }, Record { name_labels: Name("dendrite-bdefafec-8e14-41a1-9c77-9b19366f4038.host.control-plane.oxide.internal."), rr_type: AAAA, dns_class: IN, ttl: 0, rdata: Some(AAAA(fd00:1122:3344:101::2)) }], valid_until: Instant { tv_sec: 2226, tv_nsec: 840254347 } })
|
| 519 | 2024-05-13T19:14:32.932Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = BlueprintConfig
result = Ok(())
|
| 520 | 2024-05-13T19:14:32.932Z | DEBG | nexus (BackgroundTasks): roles
background_task = blueprint_loader
roles = RoleSet { roles: {} }
|
| 521 | 2024-05-13T19:14:32.932Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = physical_disk_adoption
resource = Fleet
result = Ok(())
|
| 522 | 2024-05-13T19:14:32.932Z | DEBG | nexus (BackgroundTasks): roles
background_task = physical_disk_adoption
roles = RoleSet { roles: {} }
|
| 523 | 2024-05-13T19:14:32.932Z | INFO | nexus (BackgroundTasks): Determining switch slots managed by switch zones
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:993
|
| 524 | 2024-05-13T19:14:32.932Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = switch_port_config_manager
elapsed = 6.816471ms
iteration = 2
|
| 525 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = physical_disk_adoption
resource = Database
result = Ok(())
|
| 526 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = blueprint_loader
resource = Database
result = Ok(())
|
| 527 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = instance_watcher
resource = Fleet
result = Ok(())
|
| 528 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): roles
background_task = instance_watcher
roles = RoleSet { roles: {} }
|
| 529 | 2024-05-13T19:14:32.933Z | INFO | nexus (BackgroundTasks): Determining switch slots managed by switch zones
background_task = bfd_manager
file = nexus/src/app/mod.rs:993
|
| 530 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_zone_nat_tracker
resource = Inventory
result = Ok(())
|
| 531 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_zone_nat_tracker
roles = RoleSet { roles: {} }
|
| 532 | 2024-05-13T19:14:32.933Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = instance_watcher
resource = Database
result = Ok(())
|
| 533 | 2024-05-13T19:14:32.934Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_zone_nat_tracker
resource = Database
result = Ok(())
|
| 534 | 2024-05-13T19:14:32.934Z | INFO | nexus (BackgroundTasks): Physical Disk Adoption: Rack not yet initialized
background_task = physical_disk_adoption
file = nexus/src/app/background/physical_disk_adoption.rs:79
rack_id = 6307bf43-24f1-4bbd-994f-0f6946e3b5f3
|
| 535 | 2024-05-13T19:14:32.934Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = physical_disk_adoption
elapsed = 8.167759ms
iteration = 2
|
| 536 | 2024-05-13T19:14:32.934Z | WARN | nexus (BackgroundTasks): failed to read target blueprint
background_task = blueprint_loader
error = Internal Error: no target blueprint set
file = nexus/src/app/background/blueprint_load.rs:69
|
| 537 | 2024-05-13T19:14:32.934Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = blueprint_loader
elapsed = 8.331795ms
iteration = 4
|
| 538 | 2024-05-13T19:14:32.989Z | INFO | nexus (BackgroundTasks): all instance checks complete
background_task = instance_watcher
file = nexus/src/app/background/instance_watcher.rs:469
pruned_instances = 0
total_completed = 0
total_failed = 0
total_incomplete = 0
total_instances = 0
|
| 539 | 2024-05-13T19:14:32.989Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = instance_watcher
elapsed = 62.337378ms
iteration = 2
|
| 540 | 2024-05-13T19:14:32.993Z | INFO | nexus (BackgroundTasks): determining switch slot managed by dendrite zone
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:1001
zone_address = fd00:1122:3344:101::2
|
| 541 | 2024-05-13T19:14:32.993Z | DEBG | nexus (MgsClient): client request
background_task = nat_v4_garbage_collector
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12225/local/switch-id
|
| 542 | 2024-05-13T19:14:32.993Z | DEBG | nexus (MgsClient): client response
background_task = nat_v4_garbage_collector
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12225), path: "/local/switch-id", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "f742d429-0f17-4e56-bfe2-617c0cbca735", "content-length": "26", "date": "Mon, 13 May 2024 19:14:32 GMT"} })
|
| 543 | 2024-05-13T19:14:32.993Z | INFO | nexus (BackgroundTasks): identified switch slot for dendrite zone
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:1006
slot = SpIdentifier {\n slot: 0,\n type_: Switch,\n}
zone_address = fd00:1122:3344:101::2
|
| 544 | 2024-05-13T19:14:32.994Z | INFO | nexus (BackgroundTasks): completed mapping dendrite zones to switch slots
background_task = nat_v4_garbage_collector
file = nexus/src/app/mod.rs:1038
mappings = {\n Switch0: fd00:1122:3344:101::2,\n}
|
| 545 | 2024-05-13T19:14:33.001Z | INFO | nexus (BackgroundTasks): determining switch slot managed by dendrite zone
background_task = bfd_manager
file = nexus/src/app/mod.rs:1001
zone_address = fd00:1122:3344:101::2
|
| 546 | 2024-05-13T19:14:33.001Z | DEBG | nexus (MgsClient): client request
background_task = bfd_manager
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12225/local/switch-id
|
| 547 | 2024-05-13T19:14:33.001Z | DEBG | nexus (MgsClient): client response
background_task = bfd_manager
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12225), path: "/local/switch-id", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "ee6c4029-f4a1-4d80-9102-57bb5fe9adf4", "content-length": "26", "date": "Mon, 13 May 2024 19:14:32 GMT"} })
|
| 548 | 2024-05-13T19:14:33.001Z | INFO | nexus (BackgroundTasks): identified switch slot for dendrite zone
background_task = bfd_manager
file = nexus/src/app/mod.rs:1006
slot = SpIdentifier {\n slot: 0,\n type_: Switch,\n}
zone_address = fd00:1122:3344:101::2
|
| 549 | 2024-05-13T19:14:33.002Z | INFO | nexus (BackgroundTasks): completed mapping dendrite zones to switch slots
background_task = bfd_manager
file = nexus/src/app/mod.rs:1038
mappings = {\n Switch0: fd00:1122:3344:101::2,\n}
|
| 550 | 2024-05-13T19:14:33.027Z | DEBG | nexus (BackgroundTasks): roles
background_task = service_zone_nat_tracker
roles = RoleSet { roles: {} }
|
| 551 | 2024-05-13T19:14:33.027Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = service_zone_nat_tracker
resource = Database
result = Ok(())
|
| 552 | 2024-05-13T19:14:33.042Z | ERRO | nexus (BackgroundTasks): nexus is running but no service zone nat values could be generated from inventory
background_task = service_zone_nat_tracker
file = nexus/src/app/background/sync_service_zone_nat.rs:277
|
| 553 | 2024-05-13T19:14:33.042Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = service_zone_nat_tracker
elapsed = 116.515726ms
iteration = 2
|
| 554 | 2024-05-13T19:14:33.049Z | DEBG | nexus (DpdClient): client request
background_task = nat_v4_garbage_collector
body = None
method = GET
uri = http://[fd00:1122:3344:101::2]:12224/rpw/nat/ipv4/gen
|
| 555 | 2024-05-13T19:14:33.050Z | DEBG | nexus (DpdClient): client response
background_task = nat_v4_garbage_collector
result = Ok(Response { url: Url { scheme: "http", cannot_be_a_base: false, username: "", password: None, host: Some(Ipv6(fd00:1122:3344:101::2)), port: Some(12224), path: "/rpw/nat/ipv4/gen", query: None, fragment: None }, status: 200, headers: {"content-type": "application/json", "x-request-id": "0e8ab032-14b8-4fca-8ac4-4a308c531b80", "content-length": "1", "date": "Mon, 13 May 2024 19:14:32 GMT"} })
|
| 556 | 2024-05-13T19:14:33.050Z | DEBG | nexus (BackgroundTasks): roles
background_task = nat_v4_garbage_collector
roles = RoleSet { roles: {} }
|
| 557 | 2024-05-13T19:14:33.050Z | DEBG | nexus (BackgroundTasks): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-000000000002, .. })
background_task = nat_v4_garbage_collector
resource = Database
result = Ok(())
|
| 558 | 2024-05-13T19:14:33.052Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = nat_v4_garbage_collector
elapsed = 125.961181ms
iteration = 2
|
| 559 | 2024-05-13T19:14:33.057Z | DEBG | nexus (BackgroundTasks): activation complete
background_task = bfd_manager
elapsed = 131.402163ms
iteration = 2
|
| 560 | 2024-05-13T19:14:33.208Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 561 | 2024-05-13T19:14:33.208Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 562 | 2024-05-13T19:14:33.209Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 563 | 2024-05-13T19:14:33.210Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 564 | 2024-05-13T19:14:33.210Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 565 | 2024-05-13T19:14:33.213Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 566 | 2024-05-13T19:14:33.213Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 567 | 2024-05-13T19:14:35.214Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 568 | 2024-05-13T19:14:35.215Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 569 | 2024-05-13T19:14:35.216Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 570 | 2024-05-13T19:14:35.216Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 571 | 2024-05-13T19:14:35.217Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 572 | 2024-05-13T19:14:35.219Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 573 | 2024-05-13T19:14:35.219Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|
| 574 | 2024-05-13T19:14:37.221Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 575 | 2024-05-13T19:14:37.221Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 576 | 2024-05-13T19:14:37.222Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {} }
|
| 577 | 2024-05-13T19:14:37.223Z | DEBG | nexus (ServiceBalancer): authorize result
action = Query
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Database
result = Ok(())
|
| 578 | 2024-05-13T19:14:37.224Z | DEBG | nexus (ServiceBalancer): roles
roles = RoleSet { roles: {(Fleet, 001de000-1334-4000-8000-000000000000, "admin")} }
|
| 579 | 2024-05-13T19:14:37.226Z | DEBG | nexus (ServiceBalancer): authorize result
action = Read
actor = Some(Actor::UserBuiltin { user_builtin_id: 001de000-05e4-4000-8000-00000000bac3, .. })
resource = Rack { parent: Fleet, key: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, lookup_type: ById(6307bf43-24f1-4bbd-994f-0f6946e3b5f3) }
result = Ok(())
|
| 580 | 2024-05-13T19:14:37.226Z | INFO | nexus: Still waiting for rack initialization: Rack { identity: RackIdentity { id: 6307bf43-24f1-4bbd-994f-0f6946e3b5f3, time_created: 2024-05-13T19:14:03.578641Z, time_modified: 2024-05-13T19:14:03.578641Z }, initialized: false, tuf_base_url: None, rack_subnet: Some(V6(Ipv6Network { addr: fd00:1122:3344:100::, prefix: 56 })) }
file = nexus/src/app/rack.rs:693
|