This patchset adds the ability to define an elasticsearch account to
use for remote logging and centralized logging functions
Change-Id: Iec61a130db6d94218893d3544e5a82c8ca04055b
Some infra charts still have old ocata xenial images as default. This
should bring them up to date with the OSH charts.
Change-Id: If8454b6d0fe52387bf6327501ee4ff87f56e87b8
Signed-off-by: Tin Lam <tin@irrational.io>
By tying the fluent condfiguration to the release, it will be re-rendered
if the release is upgraded. This is useful in combination with [0], allowing
powerful configuration updates using helm upgrade. For example
Values:
.Values.pod.env.fluentd.vars.OUTPUT_ENABLED: true
fluent.conf:
...
{{- if .Values.pod.env.fluentd.vars.OUTPUT_ENABLED }}
<match **>
# Output Configuration here
</match>
{{- end }}
To disable this output section, issue a helm upgrade command and set the
apprpriate value to false.
helm upgrade fluentd ./fluentd --set pod.env.fluentd.vars.OUTPUT_ENABLED=false
[0] https://review.opendev.org/#/c/726880/
Change-Id: I3dce9e5c4eaf588569e8cc3e1ea3cf3bebd0c3c5
This patchset introduces the framework by which all OSH-based database
systems can use to backup and restore their databases. The framework
is refactored from the Postgresql backup and restore logic. This will
prevent alot of code duplication in the backup restore scripts across
each cluster.
In the process, some improvements needed to be made:
1) Removing the need for 2 separate containers to do the backup
and restore work to a remote gateway. This simplifies the design
and enables a higher level of robustness.
2) Adding separate "days to keep" config value for remote backup files,
as there may be different requirements for the remote files than the
local backup files.
3) Adding capability to send Storage_Policy when creating the remote
RGW swift container.
4) Making coding style improvement for readability and maintainability.
5) Fixing a deployment bug that occurs when remote backup is disabled.
Change-Id: I3a3482ad67320e89f04305b17da79abf7ad6eb45
This change adds the HTK Secret Environment Variables function
to Elasticsearch. This may be required to store auth or certificate
details needed to establish remote clustering.
Change-Id: I3f1167f1c015101f768ad223024ce2490d355d83
The mariadb statefulset template, while renders properly in helm2, does
not render in helm3. An extra "-" gobbles up a needed newline causing an
error when you run "helm template mariadb".
Change-Id: Idc1bee8e94c209a485ff2453ba2531dcddb63fc8
Signed-off-by: Tin Lam <tin@irrational.io>
This is to move to onDelete upgrade strategy for ceph-osd daemonsets
so that osd upgrade cane be performed by failure domains as current
upgrade strategy(RollingUpdate) will randomly pick the osd pods for upgrade.
This will be more helpful when we have rack based failure domains
on the ceph clusters.
This ps will add a new job called post-apply to restart
the osd pods rack by rack
- post-apply job will make sure osds gets restart rack by rack which
will save upgrade time.
- its less/no distruptive since we are upgrading per failure domain.
also this job will be enabled only when we have OnDelete upgrade strategy in values.
Change-Id: I2e977e75616e08fee780f714bbd267743c42c74d
Fix a bug in get_lvm_tag_from_volume when no logical volume is
provided and remove unnecessary echo commands from helper
functions.
Change-Id: I8e89d1f8e5a3c7c8148a7cd46ef3fcdf4f6f82bd
This change updates the fluentd configmap-etc to render
.Values.conf.fluentd.template as a template, allowing for greater
flexibility in configuration.
Change-Id: I8809767c679c377e319ecc53960c55ae18e1b558
This change adds a new Deployment to the Elasticsearch chart to add a
set of "gateway" nodes to the Elasticsearch cluster. These nodes will
facilitate Elasticsearch remote cluster, for features such as cross
cluster search.
Co-Authored-By: David Smith <ds3330@att.com>
Change-Id: Ic4ac988a922a12addce3c65e0ef4099d46bbc784
The current copyright refers to a non-existent group
"openstack helm authors" with often out-of-date references that
are confusing when adding a new file to the repo.
This change removes all references to this copyright by the
non-existent group and any blank lines underneath.
Change-Id: I1882738cf9757c5350a8533876fd37b5920b5235
There is a bug in nginx.tmpl that it will not enclose ipv6
addresses in square brackets resulting in them being unable to
be parsed.
Test pass on both ipv4 and ipv6 simplex setup for StarlingX
project
Change-Id: I16e586f5d8e3dfcb5e94f0486409c9637ba197b2
Signed-off-by: Zhipeng Liu <zhipengs.liu@intel.com>
This change removes "ceph-volume inventory" and "ceph-volume lvm
list" commands from the ceph-volume OSD initialization script and
Bluestore start script and replaces them with "pvdisplay" and
"lvs" to retrieve lvm tags directly from lvm volumes instead.
Ceph-volume makes repeated calls to blkid, which is very slow in
some cases and deadlocks in others when there are RBDs mapped on
the host.
Change-Id: Ia999770d4a59729e38dbb494b34c30e5a1b36a8b
The PS moves the relese of lock out from the if-else statement.
Otherwise we are not releasing the lock in two of three cases.
And the lock will be released only if we are going though
the last "else" statement. The PS supposed to fix that.
Also it increases the timeout value.
Change-Id: I284cff06a34ddb864484d2a63780b4fdb9075a0a
This patch fixes 2 problems with MariaDB backup:
1) If a user with grants to a database has a hyphenated name, the backup
script errors out and the grants for this user won't be saved in the backup.
2) While restoring databases from a backup, if connections are allowed
during the restore operation, there is potential for deadlock. Table
level locks are added to the backup sql file in order to try to prevent
these deadlock situations.
Change-Id: If612e7b9f3f4d75fc67018eea17609f07a0c0b0f
1) Added a new backup container for accessing RGW via Openstack Swift API.
2) Modified the backup script so that tarballed databases can be sent to the RGW.
3) Added new script to send the database backup to the RGW.
4) Modified the restore script so that databases can be retrieved from the RGW.
5) Added new script to retrieve the database backups from the RGW.
Change-Id: Id17a8fcb63f5614ea038c58acdc256fb4e05f434
Cephfs tests were disabled in order to merge
https://review.opendev.org/695568 due to gate failures that were
blocking it. CephFS isn't used in openstack-helm-infra, so it
wasn't required for that work. This change re-enables the cephfs
tests so we can work through any issues that are causing further
failures.
Since the the issue got fixed in 14.2.8 , upgrading all daemons to 14.2.8.
(https://tracker.ceph.com/issues/43770)
Change-Id: I376d39b7ee00ccb1ab8046b58f92b19a822272e1
There was a change[0] in zuul that made the docs job fail
if the build/html dir was empty. Our docs job was putting the
built docs in the source file by mistake, this ps fixes
this issue.
[0] https://review.opendev.org/#/c/721221/
Change-Id: I9ef336cf32dad96ff4a4fcc2743363a8f40f4718
