427 Commits

Author SHA1 Message Date
Eduardo Gonzalez
4e35b0e9b1 Add release note for redis in mistral
Mistral requires redis as of pike release,
notify users about this new feature and make sure
updrades enables redis.

Change-Id: I41e82869d036673181b4dba05ad07089691d0357
2017-08-23 13:07:18 +02:00
Eduardo Gonzalez
ecc022177c Fix missing tacker-conductor service
Tacker has included a new conductor service
to manage mistral workflows for VIM monitoring.

Without conductor, Tacker cannot create VIMs.

This change reworks tacker to include tacker-conductor
service.

Depends-On: I52778e86e4f2c297ead8d4b09983e5e38ca88c70
Closes-Bug: #1710874
Change-Id: I6901e919887551bedc9dba8983ac904e8c48c9ce
2017-08-21 08:12:01 +00:00
Jenkins
9c43de8955 Merge "Add Swift backend support to Glance" 2017-08-17 14:14:08 +00:00
Paul Bourke
dbe7b591d4 Add dev mode for glance
Allows users to develop on Glance using Kolla.

Change-Id: I2c7c97ddf84ca19505cf01adaf982c6a3f70d7d0
Partially-Implements: blueprint mount-sources
2017-08-17 14:41:14 +01:00
guochao
d3e07342a5 Add Swift backend support to Glance
Support setting Swift as Glance storage backend.

Change-Id: Idddbf2ce741e0486d60e1de88c77a7f0332a5a2b
2017-08-17 05:43:05 +00:00
Sean Mooney
781d84658d introduce playbook to ovs with dpdk
- This change creates a new role to
  support deploying ovs with dpdk.
- This change introduces an enable_ovs_dpdk
  variable to enable ovs with dpdk as part of
  the deploy action.
- This change extends the ovs-dpdkctl.sh tool
  to correctly deploy ovs-dpdk on Ubuntu and CentOS
  hosts.
- This change extends the cleanup-host tool
  to correctly uninstall ovs-dpdkctl.sh tool and its
  systemd files if present on the host.
- This change automatically configures userspace
  kernel drivers.

partial-implementes: bp/ovs-dpdk
Change-Id: I55858d81df437e8258705b75426f61ab9b907c7d
2017-08-09 18:43:06 +00:00
Marcus G K Williams
57496c4147 Add OpenDaylight role
Adds role for OpenDaylight deploy.

Change-Id: I1e697ea4d3f33aab4b0f55863a377b39eda8f609
Co-Authored-By: Mauricio Lima <mauriciolimab@gmail.com>
Co-Authored-By: Jiri Prokes <jirix.x.prokes@intel.com>
Co-Authored-By: Eduardo Gonzalez <dabarren@gmail.com>
Partially-Implements: blueprint opendaylight-support
2017-08-03 07:39:38 -07:00
Jenkins
e9c4a5877d Merge "Use a separate user for ceph-rgw rather than keystone admin user" 2017-07-27 14:47:08 +00:00
Jeffrey Zhang
1cf116cd6c Use a separate user for ceph-rgw rather than keystone admin user
If not, change admin user password will break ceph rgw service.

Change-Id: Ia872f6f1aa2d9917d3f5851e0edcffed61e71355
Closes-Bug: #1705929
2017-07-27 16:41:41 +08:00
Jenkins
d44d5d0b48 Merge "Support multi local chrony servers" 2017-07-27 08:25:31 +00:00
Jenkins
815dfe40f6 Merge "Add qdrouterd role for messaging infrastructure component" 2017-07-27 08:23:31 +00:00
Jeffrey Zhang
72ee7dac7c Support multi local chrony servers
In the old implementation, if there is no external ntp server, only one
local chrony server is supported. If multi chrony-server is configured,
chrony client can not sync with them.

In the new implementation
* use VIP to connect chrony-server, which ensure multi local chrony
  servers are supported.
* chrony servers depend on VIP. So chrony-server group should be
  the same with haproxy group.
* prevent chrony client sync from itself.
* Change owner to chrony:kolla for chrony log folder
* fix keysfile path
* use chrony user for centos and ubuntu image
* fix permission issue for /var/lib/chrony folder

Closes-Bug: #1705200
Change-Id: I6e85fda9824b5ddc7a96895425c5932a3566c27e
2017-07-26 03:38:05 +00:00
chenxing
b39da1e4c2 Update the documentation link for doc migration
Change-Id: I8c340cfe33789badb4f8df93f0c13f56fdea5dbf
2017-07-21 09:49:19 +00:00
Jeffrey Zhang
ddad15c07e Remove ceilometer-api and ceilometer-collector services
* remove ceilometer-api and ceilometer-collector service
* use ceilometer-notification to publish message to proper backend
* remove useless ceilometer_database_type and ceilometer_event_type
  variables
* sync event_definitions.yaml, event_pipeline.yaml and pipeline.yaml
  file with upstream

Change-Id: Ib39053cb5f70bd11ee61d3f26d5b28accecd7190
2017-07-17 11:03:44 +08:00
Jenkins
1515164e15 Merge "Migrate cinder-api under apache" 2017-07-13 11:37:49 +00:00
Andrew Smith
eeb535aa2e Add qdrouterd role for messaging infrastructure component
Adding the role needed to run the qdrouterd as an infrastructure
component which provides a messaging backend for the
oslo.messaging AMQP 1.0 driver. The qdrouterd will provide direct
messaging capabilities for the RPC messaging pattern in support
of hybrid messaging deployments.

Implements: blueprint qdrouterd-role
Change-Id: I74c654b3c70f61f81c2c7efa87f076a62a4a2dd8
2017-07-10 11:04:43 -04:00
jimmygc
69d9343fd0 Add ceph rgw object store support into trove
Ceph rgw can be used as object store instead of Swift.
This patch enable trove to use ceph rgw as object store.

Change-Id: I50b878078b7c62c1034a102d064dfa90a1357ee8
2017-07-10 11:30:10 +08:00
Jenkins
7c789a662c Merge "Add VMware NSXV support to neutron" 2017-07-06 22:46:39 +00:00
Eduardo Gonzalez
d708e95658 Migrate cinder-api under apache
Cinder ubuntu binary was already migrated under apache.
This change migrates rest of the distros/install types to
be executed under an apache process.

Change-Id: I8544eec5bfebf771d758f13abf4dfbc802f5d24f
2017-07-06 09:42:28 +00:00
Jenkins
b9ab96ce40 Merge "Switch from oslosphinx to openstackdocstheme" 2017-07-06 08:31:25 +00:00
Jenkins
5dc7920d4a Merge "Move mDNS to network nodes" 2017-07-06 03:34:22 +00:00
Jeffrey Zhang
065b64feaf Fix add cleanup images cli options release note folder
Change-Id: Ie206f0f245648df855ceb6140e60de664dac74fc
2017-07-04 10:44:54 +08:00
ZhongShengping
a643acbf62 Switch from oslosphinx to openstackdocstheme
As part of the docs migration work[0] for Pike we need to switch to use the
openstackdocstheme.

[0]https://review.openstack.org/#/c/472275/

Change-Id: Id63951348211bdcb2b189455968bdfed40857815
2017-07-02 15:54:05 +08:00
Jenkins
99075dab64 Merge "Enable port_security by default" 2017-06-30 09:40:36 +00:00
Jenkins
ee11884e37 Merge "Add possibility to configure tenant network types and type drivers" 2017-06-29 13:11:04 +00:00
Jenkins
b560b64e74 Merge "Add flag to allow provider networks" 2017-06-27 16:40:09 +00:00
Vladislav Belogrudov
f6eefdf388 Add flag to allow provider networks
In case of provider networks we need to configure external bridge
on compute nodes, like it is done in DVR. The only way to tell
if provider networks are to be used is a new flag.

Change-Id: I1aef197ee2b84e28f2131f058e6995551f873fe1
Closes-Bug: #1694726
2017-06-27 08:33:43 +00:00
Jenkins
be8f64492c Merge "Barbican simple_crypto plugin broken - invalid key" 2017-06-26 08:58:03 +00:00
Jenkins
87c860dbf9 Merge "Add upgrade release note for ovs split" 2017-06-22 14:54:49 +00:00
Mark Goddard
2e4359069e Barbican simple_crypto plugin broken - invalid key
When using the simple_crypto plugin, barbican expects the
[simple_crypto_plugin] kek config value to be a base64-encoded 32 byte
value. However, kolla-ansible is providing a standard autogenerated
password.

There are two relevant variables in kolla-ansible -
barbican_crypto_password (a standard password) and barbican_crypto_key
(a HMAC-SHA256 key). There is no use of barbican_crypto_key other than
when it is generated. barbican_crypto_password is used to set the
[simple_crypto_plugin] kek config value but causes an error when the
simple_crypto plugin is used as the value is not in the expected format.
Using barbican_crypto_key instead resolves the error. Clearly there is a
naming issue here and we should be using barbican_crypto_key instead of
barbican_crypto_password.

This change removes the barbican_crypto_password variable and uses
barbican_crypto_key instead.

Change-Id: I63e2b381c260265e5901ee88ca0a649d96952bda
Closes-Bug: #1699014
Related-Bug: #1683216
Co-Authored-By: Stig Telfer <stig@stackhpc.com>
2017-06-21 17:07:17 +01:00
Vladislav Belogrudov
296ddbeb03 Add possibility to configure tenant network types and type drivers
This patch add configuration options for tenant network types and type
drivers. Both lists are checked so that tenant types are listed in
drivers. For ironic 'flat' driver is mandatory and is added explicitly
into ironic prechecks.

Change-Id: Ie5775001165412910a258cbed2d2ebbb8ebbd879
Closes-Bug: #1694725
2017-06-21 17:14:25 +03:00
Eduardo Gonzalez
1f1d91b960 Move mDNS to network nodes
mDNS publish DNS services to designate service customers.
Only network node should be reachable by public networks.

Change-Id: Id2947df89d2d831d67e006a581ac88b4ecf8ce04
Closes-Bug: #1693918
2017-06-21 13:17:46 +00:00
Eduardo Gonzalez
112d632640 Enable port_security by default
Neutron recommend as good practice to enable port_security
extension by default. Current networks will remain using
security groups, but will allow users to disable port_security
in their port or networks.
An example use case is nfv.

Change-Id: I69f2e3567fd00695cf1c4bcc9177c2b88e33c3ab
2017-06-19 14:09:32 +02:00
Jenkins
f07515afe8 Merge "Add vhost to outward rabbitmq for Murano" 2017-06-16 11:28:33 +00:00
Paul Bourke
aff43f73e3 Add vhost to outward rabbitmq for Murano
Change-Id: I09654f29b59e0327ee1a7961e0990e4c6927e8fc
Closes-Bug: #1620374
2017-06-15 14:19:33 +01:00
Dan Ardelean
58ce2b54ea Add Hyper-V role
Implement an ansible role that adds Hyper-V as a compute node for
OpenStack using Kolla.

This will install and configure the Nova Compute service, the
Hyper-V Neutron agent and FreeRDP-WebConnect.
https://docs.openstack.org/ocata/config-reference/compute/hypervisor-hyper-v.html

Change-Id: I601835b0769c5ff173a980a05a752391ae8cc82f
Implements: blueprint hyperv-ansible-role
Co-Authored-By: Alessandro Pilotti <apilotti@cloudbasesolutions.com>
2017-06-15 16:12:31 +03:00
Paul Bourke
d8fe3ea780 Add a new 'outward' rabbitmq instance
Certain services such as Murano and trove require access to a rabbitmq
instance from tenant networks. [0]

Exposing the internal rabbitmq to end users is a security hole, hence
there are two options, 1) use vhosts in the existing rabbitmq, or two a
separate rabbitmq instances. Given the importance of rabbitmq to the
OpenStack deployment, we have decided to go with a separate instance.
Refer to [1] for more detail on the various options.

This change makes the rabbitmq role generic so that it can be reused, in
this case to start 'outward_rabbitmq'. It needs to be exposed via
haproxy both for network isolation and also because this is what Murano
configuration requires.

Follow on patches will be added to add a vhost in this outward instance
for Murano and other services which require access.

Based on the original work by bdaca[2]

[0] http://murano.readthedocs.io/en/stable-liberty/intro/architecture.html
[1] http://lists.openstack.org/pipermail/openstack-dev/2016-December/109091.html
[2] https://review.openstack.org/#/c/374525

Change-Id: Ib2bcc7ed4bf4f883a7cd1dfad3db89201e3cfd8d
Partial-Bug: #1620374
Depends-On: I020eb6219f89a310451becde41f6f1c7f54baadd
Co-Authored-By: Bartłomiej Daca <bartek.daca@gmail.com>
2017-06-15 11:12:22 +00:00
jimmygc
8d1b745f45 Add VMware NSXV support to neutron
Implements NSXV network part of  the blueprint.

Change-Id: I6b92b946667ebbbd2721a99fd299981cfc99693f
Partially-implements: blueprint kolla-ansible-support-vsphere
Co-Authored-By: shaofeng cheng <chengsf@winhong.com>
2017-06-12 09:51:23 +00:00
Paul Bourke
5cb375645c Add a Kolla 'devstack' mode
Add a new variable 'kolla_devmode', which when enabled, clones and
bindmounts service source code into the containers.

This commit adds the relevant changes for Heat, more services can be
added and built upon.

Usage:
* Set 'kolla_devmode: yes'

* Code is cloned to /opt/stack/{{ project_name }} on target
  node(s)

* Users can develop in these repos, and simply restart the container to
  pick up / test changes.

Debugging can be done from the host via 'remote_pdb'[0].

[0] https://pypi.python.org/pypi/remote-pdb

Implements: blueprint mount-sources
Change-Id: Ic0431b10d723bf84eeefc72039376fe0058dd902
2017-06-08 09:55:54 +01:00
Jenkins
1d5a7fcb83 Merge "Add release note to deprecate some config files" 2017-06-06 08:17:46 +00:00
Bertrand Lallau
a3aa0e8540 Add release note to deprecate some config files
Actually Openstack services configuration can be overriden using many
files:
- /etc/kolla/config/<< service name >>/<< config file >>
- /etc/kolla/config/<< service name >>/<<host>>/<< config file >>
- /etc/kolla/config/global.conf
- /etc/kolla/config/database.conf
- /etc/kolla/config/messaging.conf

Only per-service configuration is actually documented here:
https://github.com/openstack/kolla-ansible/blob/master/doc/advanced-configuration.rst#L164

Allowing to globally modify service configuration can be perform too,
but it can be done in 3 different manners:
- /etc/kolla/config/global.conf
- /etc/kolla/config/database.conf
- /etc/kolla/config/messaging.conf

database.conf and messaging.conf seems redundant with global.conf.
In order to simplify codebase it seems logical to deprecate them.

Change-Id: Ia632c207e4b0237ea813fcf53b44504b97a204e7
2017-06-05 11:26:24 +00:00
Jenkins
dd11b3f5a4 Merge "Support OSprofile usage" 2017-06-05 08:54:43 +00:00
Jenkins
77041db66e Merge "[Trivial] Fix two typos in kolla-ansible." 2017-06-04 14:55:34 +00:00
Eduardo Gonzalez
ab4b1ff785 Support OSprofile usage
OSprofile allows user/devs trace OpenStack requests.

Implements: blueprint enable-osprofiler
Co-Authored-By: Bertrand Lallau <bertrand.lallau@gmail.com>
Change-Id: I82ea85d726011ef6cbf99380f395452d6d7f8053
2017-06-02 22:41:33 +02:00
Jenkins
e8c0ed8b7e Merge "Add kolla-ansible bash completion script" 2017-06-02 11:05:44 +00:00
leiyashuai
e8e64f1c83 [Trivial] Fix two typos in kolla-ansible.
Change-Id: I9665338318f8ad4690e4908748065623d0537741
2017-05-16 19:32:36 -07:00
jimmygc
94c5cc570a Add kolla-ansible bash completion script
Make command line more friendly. :)

Change-Id: I8113c72aa00b1c07cb2b77c73e7dd8c7ee833bcc
2017-05-12 09:06:36 +08:00
Eduardo Gonzalez
ed72a0afb7 Add upgrade release note for ovs split
Openvswitch role has been splited from neutron role.
When upgrading is required to add openvswitch group in
inventory file. Add this statement into release notes.

Change-Id: If0fea2c550551a07b866b69166eda080263cf2f4
2017-05-10 10:49:35 +00:00
Jenkins
a8433495dd Merge "Add graceful_timeout argument to kolla_docker" 2017-05-10 08:40:36 +00:00
Jenkins
b236be7cb1 Merge "Remove all Ubuntu 14.04 related documentation" 2017-05-02 16:50:37 +00:00