12647 Commits

Author SHA1 Message Date
Zuul
841bfd1bb4 Merge "Deprecate storage_interface variable" 2022-01-20 20:51:27 +00:00
Zuul
a98d13ed7b Merge "[docs] swift: fix mentions of interfaces config" 2022-01-20 20:51:25 +00:00
Zuul
e048401940 Merge "Clean up chrony cleanup" 2022-01-20 03:59:07 +00:00
Zuul
646868ebf4 Merge "Remove custom value of max_allowed_secret_in_bytes" 2022-01-18 18:14:33 +00:00
Zuul
d83959beaf Merge "multiple: remove duplicated variables between defaults and group vars" 2022-01-18 16:34:41 +00:00
Radosław Piliszek
e63bbed18d Clean up chrony cleanup
In the Yoga cycle we no longer need kolla chrony container removal
procedures.

Change-Id: I4dc246cf0fd68838470bf9e9bf749fa9be4d6670
2022-01-18 15:37:51 +00:00
Pierre Riteau
20a3b14001 Remove custom value of max_allowed_secret_in_bytes
Barbican has recently bumped max_allowed_secret_in_bytes from 10 KB to
20 KB since the original value was too small for some certificates [1].
Remove custom value from the barbican.conf template, which anyway was
the same as the default configuration before the recent upstream change.

The upstream change was backported to Wallaby and has been proposed to
Victoria, Ussuri and Train [2], so this change should be backported too.

[1] https://review.opendev.org/c/openstack/barbican/+/783381
[2] https://review.opendev.org/q/I59d11c5c9c32128ab9d71eaecdf46dd2d789a8d1

Change-Id: I83e4cb48192c8024650a8d347363f6babb75ad90
Closes-Bug: #1957795
2022-01-18 16:22:03 +01:00
Zuul
7b3527819f Merge "Continue to run all actions if one action failed in curator" 2022-01-18 10:48:22 +00:00
Zuul
45452c1ae2 Merge "[CI] Drop unused nodeset" 2022-01-18 09:21:06 +00:00
Zuul
e207a97fc3 Merge "Fix permission denied errors with ping on c8s" 2022-01-17 15:41:31 +00:00
Pierre Riteau
e6cfaee10c Fix permission denied errors with ping on c8s
They seem to think ping is too dangerous for normal users.

Co-Authored-By: Pierre Riteau <pierre@stackhpc.com>
Signed-off-by: Dr. Jens Harbott <harbott@osism.tech>
Depends-On: https://review.opendev.org/c/openstack/kolla-ansible/+/824903
Change-Id: I30c2a7b6850350901b15fe196175508634c8e9a5
2022-01-17 08:59:45 +00:00
Radosław Piliszek
9449bcfb70 [CI] [to-revert] Avoid upgrades on CentOS Stream 8
CentOS Stream 8 currently has a bug which makes it require root
privileges for ping.
A workaround patch (see needed-by below) has been proposed, yet
the dependency on previous branches via the upgrade jobs make it
fail the CI.
Thus, this patch temporarily disables those jobs on CentOS Stream 8.
This patch is to be reverted once we patch the affected branches.

Needed-By: https://review.opendev.org/c/openstack/kolla-ansible/+/824681
Change-Id: I827ed30d0247f21478a45d96ae8396ec0e778d3b
2022-01-17 08:54:10 +00:00
Zuul
12d3e1d23e Merge "Access to zun container fails when tls_external enabled." 2022-01-13 10:45:16 +00:00
Buddhika Sanjeewa
d8c73aa206 Access to zun container fails when tls_external enabled.
Access to console of any zun container fails when
kolla_enable_tls_external is true.
This is due to the protocol of the base_url of the websocket_proxy
section in zun.conf is hardcoded to 'ws'.
[base_url = ws://<external_fqdn>:<port>]

This fix adds a new variable zun_wsproxy_protocol
and sets it's value to 'wss' when kolla_enable_tls_external is true
or to 'ws' otherwise

Then the base url's protocol of the websocket_proxy section
in zun.conf is set by zun_wsproxy_protocol
[base_url = "{{ zun_wsproxy_protocol }}://<external_fqdn>:<port>"]

Closes-Bug: 1957117
Change-Id: Ibd9ca6e40ee8c265775b0657d318aa3f82e4cccb
2022-01-12 13:30:41 +00:00
Radosław Piliszek
ea014b203c [CI] Test that Cinder can create volume from image
To catch early issues like [1].

[1] https://bugs.launchpad.net/cinder/+bug/1947518

Change-Id: I8091817939b976fbd5e44a9640b573cc112a0525
2022-01-12 09:41:40 +00:00
Michal Nasiadka
1736c788d1 multiple: remove duplicated variables between defaults and group vars
Change-Id: I547ab4b05aa14ed3bbee8be2dc77a6840d4816f6
2022-01-12 09:28:41 +00:00
Zuul
9bbba35b2f Merge "Add logrotate configuration for placement service" 2022-01-11 16:02:51 +00:00
Zuul
c052bbff90 Merge "rabbitmq: enable/disable prometheus plugin follow up" 2022-01-11 12:29:02 +00:00
Zuul
6d5f6a048b Merge "OpenID Connect certifiate file is optional" 2022-01-11 10:38:16 +00:00
Mark Goddard
71f24586de rabbitmq: enable/disable prometheus plugin follow up
Move new variables added in I4d694d6224c813285d228d6bc7eece5731db1078 to
role defaults.

Change-Id: Ie09a2dbae2701cb18fd1eb5bfab76e82f9920fb3
2022-01-11 09:10:08 +00:00
Zuul
93ececffae Merge "Support enable/disable rabbitmq prometheus plugins" 2022-01-10 19:00:35 +00:00
lixuehai
0fae876944 Add logrotate configuration for placement service
Closes-Bug: #1954723
Change-Id: I6ffc8caae1aef757d37c629fbc05bb129f80147b
2022-01-10 15:48:46 +08:00
Stig Telfer
78f29fdc5d OpenID Connect certifiate file is optional
Some ID provider configurations do not require a certificate file.
Change the logic to allow this, and update documentation accordingly.

Change-Id: I2c34a6b5894402bbebeb3fb96768789bc3c7fe84
2022-01-09 21:55:34 +00:00
LinPeiWen
1f3dcce5ac Support enable/disable rabbitmq prometheus plugins
rabbitmq starting from 3.8.0, built-in Prometheus support,
prometheus plugins are enabled by default, when the environment is
"enable_prometheus is no", rabbitmq role will disable prometheus plugins

Closes-Bug: #1885106

Change-Id: I4d694d6224c813285d228d6bc7eece5731db1078
2022-01-09 09:50:00 +00:00
Zuul
ae57c39085 Merge "CI: check-logs - add another exception" 2022-01-07 19:19:15 +00:00
Zuul
3c8bbc1dda Merge "nova: disable external metadata haproxy frontend" 2022-01-07 19:19:12 +00:00
Zuul
dc5eaa4ec7 Merge "Use Volume V3 API in OpenStack exporter" 2022-01-07 19:19:09 +00:00
Zuul
8d3873461f Merge "Use Docker healthchecks for solum services" 2022-01-07 10:22:08 +00:00
Zuul
8bf11d6660 Merge "docs: adjust to current defaults" 2022-01-07 10:14:16 +00:00
Zuul
55e79e7bc3 Merge "Remove obsolete opt from cinder.conf" 2022-01-07 10:14:13 +00:00
Zuul
675372ca20 Merge "bifrost: preempt change in defaults for TFTP and HTTP boot paths" 2022-01-07 09:08:56 +00:00
Zuul
5f78e38bc8 Merge "glance: Remove duplicate glance_*_endpoint variables from role defaults" 2022-01-07 04:27:52 +00:00
Zuul
e1297a4943 Merge "Refactor of kolla_docker into module_utils" 2022-01-06 20:01:45 +00:00
Zuul
7868daeed9 Merge "Move project_name and kolla_role_name to role vars" 2022-01-06 15:29:25 +00:00
Martin
a9fbcb1855 Refactor of kolla_docker into module_utils
Moved the DockerWorker class from module file into its separate file
in module_utils directory for future extension.
Unit tests changed accordingly.

Signed-off-by: Ivan Halomi <ivan.halomi@tietoevry.com>
Co-authored-by: Martin Hiner <martin.hiner@tietoevry.com>
Change-Id: Ia2a471a9a2805e13b2c20dbf8a7297c23231aae3
2022-01-06 11:59:50 +01:00
Radosław Piliszek
5276efdc88 [CI] Drop unused nodeset
It is required for infra cleanup.

[1] http://lists.openstack.org/pipermail/openstack-discuss/2021-December/026408.html

Change-Id: I6479e84b57bb988e7196f781644bb8f62b1f0406
2022-01-05 15:00:18 +00:00
Michal Nasiadka
3dcb6ad809 nova: disable external metadata haproxy frontend
We are not using it anywhere (metadata agents are using internal network),
so let's disable it by default.

Change-Id: If06db5030b0f09e20ef506c3b3ab39c3573b5f3d
2022-01-05 14:15:06 +00:00
Angelos Kolaitis
4410ca7802
Use Volume V3 API in OpenStack exporter
Kolla has removed the Volume V2 API by default since OpenStack Wallaby.
However, openstack-exporter attempts to use the Volume V2 API by
default, resulting in clean installs failing to fetch Cinder metrics
in Prometheus.

This patch updates the clouds.yml configuration file for
openstack-exporter to use the Volume V3 API instead.

Closes-Bug: #1938194
Change-Id: Ifbb601be3ef1a1e853d5a7e832adf556c0ae38b9
2022-01-05 13:19:08 +02:00
Michal Nasiadka
2c7ec34ac2 glance: Remove duplicate glance_*_endpoint variables from role defaults
Change-Id: I5d484ba10c8d2a924801d5f8223845e28023c345
2022-01-04 17:09:53 +01:00
wu.chunyang
87a7425839 Remove obsolete opt from cinder.conf
glance_api_version and os_region_name are removed from cinder.
see: https://docs.openstack.org/cinder/xena/configuration/block-storage/samples/cinder.conf.html

Closes-Bug: #1830997
Change-Id: I751bfe64d47935f183ff2ca891ec56f61e618009
2022-01-04 22:11:51 +08:00
Piotr Parczewski
aaf06fb2a0 docs: adjust to current defaults
Change-Id: I2e6b6ecd3717ff0811b47892aad406376c89a18c
2022-01-03 22:11:33 +01:00
Zuul
0950b464f0 Merge "horizon: move horizon_enable_tls_backend to group_vars" 2021-12-31 11:11:03 +00:00
Zuul
18f0f54536 Merge "Use Docker healthchecks for storm services" 2021-12-31 10:16:12 +00:00
Jeffrey Zhang
6e3f741ace Continue to run all actions if one action failed in curator
This patch also configure delete indices action before close indices.
more info check curator source code[0].

[0] ac5db911a1/curator/cli.py (L217-L224)

Change-Id: I9fb4b25514f5890adfac2f4007ec4a819fc9f566
Closes-Bug: #1954720
2021-12-31 09:48:56 +00:00
Pierre Riteau
56fc74f231 Move project_name and kolla_role_name to role vars
Role vars have a higher precedence than role defaults. This allows to
import default vars from another role via vars_files without overriding
project_name (see related bug for details).

Change-Id: I3d919736e53d6f3e1a70d1267cf42c8d2c0ad221
Related-Bug: #1951785
2021-12-31 09:26:25 +00:00
Zuul
2a7823b5cb Merge "CI: future-proof return semantics in check-failure.sh" 2021-12-30 21:49:16 +00:00
Zuul
e5e1fad6b3 Merge "Add ovn_sb_connection to octavia.conf" 2021-12-30 17:30:18 +00:00
Zuul
dbe9bbc2ad Merge "Add ironic-inspector policy configuration" 2021-12-30 15:22:33 +00:00
Mark Goddard
613b00cccf CI: future-proof return semantics in check-failure.sh
In case we add further check functions, use a return rather than exit.

Change-Id: Ie2a53028802ecde628bc9fe0b4e3236bdb588cf9
2021-12-30 14:42:37 +00:00
Ching Kuo
1077a9a4e7 Add ovn_sb_connection to octavia.conf
This commit added ovn_sb_connection to octavia.conf otherwise it will
try to connect to ovn-sb-db using the default address which is
127.0.0.1 while the ovn-sb-db listen on the IP address of the
api_interface.

Closes-Bug: #1950111

Change-Id: I9cb9a0365d00ffd70562b4b3e83493ec09bd52c2
2021-12-29 10:38:23 +08:00