1698 Commits

Author SHA1 Message Date
Zuul
b600b860c0 Merge "Update standalone role" 2018-10-02 18:52:00 +00:00
Martin Magr
b9aa60bb68 Collectd documentation refactor
This patch is adding missing documentation of two collectd write plugins
in the collectd-evnironment.yaml and fixes deprecated configuration keys
for metrics_qdr in metrics-collectd-qdr.yaml.

Change-Id: I7d41bbf1ca46114cfa5f1784baa8da03aee9fcab
2018-10-02 11:55:37 +02:00
Emilien Macchi
bfca5353d0 undercloud: deploy podman
We want to enable podman on the undercloud first, this patch just
install the rpm and configure the insecure registry if needed.

Change-Id: If469e584e2905a002931277bbe2f7301f7b8fd93
2018-10-02 01:47:56 +00:00
Emilien Macchi
7bebdefda8 Introduce OS::TripleO::Services::Podman
Podman service will be in charge of installing, configuring, upgrading
and updating podman in TripleO.

For now, the service is disabled by default but included in all roles.
In the cycle, we'll make it the default.

Note: when Podman will be able to run in TripleO without Docker,
we'll do like https://review.openstack.org/#/c/586679/ and make it as
a generic service that can be switched to either podman or docker.
But for now, we need podman & docker working side by side.

Depends-On: Ie9f5d3b6380caa6824ca940ca48ed0fcf6308608
Change-Id: If9e311df2fc7b808982ee54224cc0ea27e21c830
2018-10-02 01:47:46 +00:00
Michele Baldessari
0acfc345e1 Add UseNotifySSL to environments/ssl/enable-internal-tls.yaml
https://github.com/openstack/tripleo-heat-templates/blob/master/environments/ssl/enable-internal-tls.yaml#L22
uses RPCUseSSL only and misses the NotifyUseSSL variable.
The reason this is a problem is that commands/services that will kick
off a notification are likely to hang due to this.  Imagine the
following scenario:

1. TLS configured everywhere
2. keystone-manage bootstrap actually hangs

The reason for this is that the messaging string in the keystone container will look like the following:
[oslo_messaging_notifications]
transport_url=rabbit://guest:AC8DjGviXCQks8MWjQdAjYW9L@overcloud-controller-0.internalapi.tripleodomain.example.com:5672/?ssl=0

By gdb-ing on to the keystone-manage process (thanks Damien, for the
idea) we can see that we are stuck in oslo calls connecting to rabbit
without tls

Closes-Bug: #1795462
Change-Id: I0d25527131fa4cd293994a0511bba1144510c4d8
2018-10-01 18:39:14 +02:00
Daniel Alvarez
7bf7996c79 Remove unused parameter NeutronEnableDHCPAgent
NeutronEnableDHCPAgent is no longer consumed anywhere in OpenStack so
this patch is removing all occurrences of it in the environment files.

Change-Id: I042944c3f24d22fa60d4ed13fd9a56c5b93f465f
Signed-off-by: Daniel Alvarez <dalvarez@redhat.com>
2018-10-01 12:43:01 +02:00
Giulio Fidente
5ca0b91275 Mount /usr/share/ceph-ansible into mistral-executor
The undercloud needs to be able to run the playbooks shipping with
ceph-ansible so we mount them from the hosting node in undercloud.yaml

Change-Id: I8d1db69d520da069099f919f286e6a553dd645a5
Closes-Bug: 1794027
2018-10-01 11:35:40 +02:00
Zuul
1badfc470a Merge "Set mysql connect timeout in the undercloud" 2018-09-30 03:18:00 +00:00
Zuul
84097b7aae Merge "Remove NeutronServicePlugins from octavia environment files" 2018-09-29 19:51:17 +00:00
Zuul
788d643854 Merge "Move nova-metadata api to httpd wsgi" 2018-09-29 16:22:08 +00:00
Thomas Herve
25901f8c53 Set mysql connect timeout in the undercloud
This sets the mysql connect timeout in the containerized undercloud
case. It mirrors Ia3799cdaf171892431151e4f2f7d2095081b8242.

Related-Bug: #1783995
Change-Id: I727a38eb537f83accadca9ee7f38bd7ace62500e
2018-09-29 01:08:02 +00:00
Michele Baldessari
242bef164a Add a zaqar-swift-backend environment file
The main purpose of this file is to enable the zaqar service
but, unlike the environments/services/zaqar.yaml file it explicitely
disables the redis service as this is meant to be used with
swift/sqlalchemy.

The main use case here being the containerized undercloud

Change-Id: Ic11b4790a1a2c2336cd432784f19922e76e028ad
Partial-Bug: #1795027
2018-09-28 22:51:02 +02:00
Ben Nemec
9a69426508 Don't configure BIND to listen on localhost
It isn't useful for much of anything in a production deployment
and it conflicts with the local DNS server in CI.

Change-Id: Ied3ecdc71bfdf9bb6439e2c9464aa01346e69226
Closes-Bug: 1795043
2018-09-28 14:24:52 -05:00
Alex Schultz
ba81e1f4d6 Update standalone role
The standalone role can be used either with the tripleo deploy command
to deploy locally, or it can be used with an undercloud to deploy an
all-in-one node. This change provides a sample set of environment files
for both deployment mechanisms.

Change-Id: Ibc735ac4326a9217469e368c074de8b0df7689bd
Related-Blueprint: all-in-one
2018-09-26 14:14:28 -06:00
rajinir
bf98351f83 Dell EMC Sc: Add support for excluded_domain_ips
The Dell EMC SC configuration option excluded_domain_ip has been
deprecated and will be removed in a future release. Deployments
should now migrate to the option excluded_domain_ips for
equivalent functionality.

Depends-On: https://review.openstack.org/604444
Change-Id: I27c02be4d306a55a1ee8617de81d145b086a8a1b
2018-09-25 09:49:14 -05:00
Martin André
b2bcc10d5a Configure haproxy for openshift infra
Openshift Routers are located on the infra node and need to be highly
available on ports 80 and 443.

Depends-On: I5de14152904d06c49e9d5b2df6e3f09a35f23d92
Change-Id: Iee088e1279bff2cdb7a3601288804f626bff29a3
2018-09-25 16:35:48 +02:00
Harald Jensås
b766e253f4 Undercloud - Restart keepalived on update
instack-undercloud had a workaround (30-reload-keepalived)
in place to always restart keepalived on install/upgrade.
This is required to ensure VIP's are present in case the
network config was changed and os-net-config restarts
the network interface. When containerizing the undercloud
this workaround was missed.

This change adds a similar workaround. A pre_deploy
NodeExtraconfig script will restart the keepalived
container when the undercloud installer is (re-)run.

NOTE: We can remove this workaround once keepalived
      v2.0.6 or later is available.

Closes-Bug: #1791238
Change-Id: I8cada7be57cd50c54ca5f2f38ec010062512ae06
2018-09-24 21:02:34 +00:00
Zuul
4fb146fb79 Merge "Disable OVN related services in ODL env file" 2018-09-20 11:56:13 +00:00
Martin Schuppert
a823be0733 Move nova-metadata api to httpd wsgi
Upstream will deprecate usage of eventlet of all the WSGI-run
services, including nova-api and nova-metadata-api.
See https://review.openstack.org/#/c/549510/ for more details.

With this change we move nova-metadata to run via httpd wsgi
and therefore uses its own config volume.

Closes-Bug: 1781405

Change-Id: I7206925c5416814bcbf92021e606afeaedde4b1b
Depends-On: Ic65736cb0e95c400a728cd699ecf06c6aecff832
Depends-On: Ic46acdbac280ac648ec5ed9d7af0139126334fe0
Depends-On: I47d79ab8e274e94cbe0d4cadd204e63cbbe3dca8
Depends-On: I069510b8dfc8e6a7c5ff6f07826f10a2038856d7
Depends-On: I3d572dda2e90b7e24f2f8912d704462b9332d807
2018-09-19 15:07:38 +02:00
Zuul
733c12d46a Merge "Remove External network from DVR related configuration" 2018-09-19 07:54:23 +00:00
Zuul
58d3eec514 Merge "Create a Timesync service declaration" 2018-09-18 21:29:21 +00:00
Janki Chhatbar
dcf0a9a1b9 Disable OVN related services in ODL env file
ODL and OVN services are mutually exclusive and
leads to deployment failure when enabled on a role.
This patch sets OVN services to OS::Heat::None in
ODL env file to disable it whenever ODL is enabled.

Change-Id: Iaa757339f24fbadf51152326fe62f194c25e2384
2018-09-18 22:00:57 +05:30
Zuul
8928159316 Merge "Add template to disable Panko services" 2018-09-11 16:52:35 +00:00
Mehdi Abaakouk
36054d06ab Add template to disable Panko services
Change-Id: I0d4f91446ab51f1e50b03dc85677878cad317c2c
2018-09-09 04:01:49 +00:00
Michele Baldessari
0be27ee963 Disable sync_power_state_interval in containerized undercloud
On the non containerized undercloud we had the following snippet:
"""
nova_config {
  'DEFAULT/sync_power_state_interval': value => hiera('nova_sync_power_state_interval');
}

nova_sync_power_state_interval: -1
"""
The reasons for which were described in: https://launchpad.net/bugs/1552842.
This setting has been lost when we moved to containerized undercloud.
Let's add a new NovaSyncPowerStateInterval parameter that is set to 0
(meaning uses the default) and set it to -1 on the undercloud.

With this patch we have on the undercloud:
undercloud: http://logs.openstack.org/23/599423/1/check/tripleo-ci-centos-7-undercloud-containers/73a1323/logs/undercloud/var/log/config-data/nova/etc/nova/nova.conf.txt.gz:
sync_power_state_interval=-1

And on the overcloud:
https://logs.rdoproject.org/23/599423/1/openstack-check/legacy-tripleo-ci-centos-7-ovb-3ctlr_1comp-featureset001-master/d372ea8/logs/overcloud-controller-0/var/log/config-data/nova/etc/nova/nova.conf.txt.gz
sync_power_state_interval=0

Reported-By: Marian Krcmari <mkrcmari@redhat.com>
Co-Authored-By: Emilien Macchi <emilien@redhat.com>

Change-Id: Ifc817ba77187d454c24090c93461b1edad9fe7c4
Closes-Bug: #1790504
2018-09-07 11:35:47 +00:00
Alex Schultz
f7f9053963 Create a Timesync service declaration
In order to support switching between multiple timesync backends, let's
simplify the service configurations for the roles so that there is a
single timesync service.  This timesync service should point to the
expected backend (ntp/ptp/chrony).

Change-Id: I986d39398b6143f6c11be29200a4ce364575e402
Related-Blueprint: tripleo-chrony
2018-09-04 21:00:56 +00:00
Zuul
a8aacc8ef5 Merge "Remove uneececary conditionals in network-environment jinja" 2018-08-30 20:56:12 +00:00
Zuul
c3788f4ba9 Merge "Enable configuration of Designate's pools.yaml" 2018-08-30 02:07:21 +00:00
Zuul
a99ca3a6e3 Merge "Define keepalived service in environments/docker.yaml" 2018-08-29 19:12:49 +00:00
Zuul
81b2f888a1 Merge "Ceph update and upgrade in config-download era" 2018-08-28 21:06:35 +00:00
Zuul
6c47a40648 Merge "Do not enable Ram/Disk Filter with filter_scheduler" 2018-08-28 17:51:27 +00:00
Zuul
854e6f5fda Merge "Added NovaOVSDBConnection parameter" 2018-08-28 13:31:26 +00:00
04b235652b Do not enable Ram/Disk Filter with filter_scheduler
Core/Ram/Disk Filters are not required when using filter_scheduler.

After https://review.openstack.org/#/c/565841 when using these
Filters nova is not scheduling to the ironic nodes and overcloud
deployment fails.
For now just testing the undercloud, good to see what scheduler/filters
are being enabled in overcloud and reflect there as well.

Related-Bug: #1787910
Depends-On: Ia82f1c6be0d5504498e77a90268cad8abecdeae2
Change-Id: I0e376d99adeaa318118833018be81491c6b14095
2018-08-28 02:01:13 +00:00
Zuul
4a7b37f01b Merge "undercloud: revert to using the iscsi deploy interface by default" 2018-08-22 13:57:02 +00:00
Harald Jensås
b4c9766bee Remove uneececary conditionals in network-environment jinja
In the environment/network-environment*.yaml files the
itaration is done only on networks that is enabled.

We do not need conditionals inside the loop to check
wheather the network is enabled or not.

Change-Id: I621c205aebcdb353ac487a5804bbe83fbc20c95d
2018-08-22 10:38:33 +02:00
Zuul
dc6c632681 Merge "Enable collectd to connect to metrics QDR" 2018-08-22 02:18:11 +00:00
Zuul
531950631f Merge "Instance create fails due to wrong default secontext with NFS" 2018-08-21 15:26:16 +00:00
Zuul
fb5aa4bb2f Merge "Fix missing parameters in OVN DVR environment files" 2018-08-20 22:11:54 +00:00
trown
4a583c8910 Define keepalived service in environments/docker.yaml
The default for OS::TripleO::Services::Keepalived is missing.

Change-Id: I8e6bc6d46a32a55098991e1916cedebb7e0b5c93
2018-08-20 09:44:05 -04:00
Brent Eagles
d9fa0ed5b2 Remove External network from DVR related configuration
DVR doesn't imply the "External" networks, simply some type of
connection that is being used for floating IP traffic. This patch
removes the External network from the DVR role and "left overs" from
environment files. It also corrects the multiple-nics version of the
templates so that the ComputeDVR role is attached to the external
bridge with no IP.

Co-Authored-By: Dan Sneddon <dsneddon@redhat.com>

Change-Id: Ia599e01dbefe4e4c752b7d4c1c7e5682963101f7
2018-08-16 16:51:15 -07:00
Brent Eagles
2998c21191 Remove NeutronServicePlugins from octavia environment files
There are no additional octavia specific neutron service plugins for
octavia required so this parameter should be removed from the
environment files.

Change-Id: I3da329db28701c7e9798083982953c5c9c861c50
2018-08-16 18:49:52 +00:00
Daniel Alvarez
c677a4ba40 Set the number of RPC workers to 1 for non SRIOV OVN setups
OVN based backend setups don't need RPC communications as they
don't deploy Neutron agents (except for the SRIOV case).

For this reason and to minimize the resources used, this patch
is setting the number of RPC workers to the minimum, which is 1.

Change-Id: Icf84516f24873717cb7615233d2e6341414abfc7
Closes-Bug: #1786952
Signed-off-by: Daniel Alvarez <dalvarez@redhat.com>
2018-08-16 16:44:18 +00:00
Amir Mohamad
c9e2d39a63 This file intorduces OVN as a controller.
I've cloned the neutron-sfc.yaml file and added to the parameter_defaults NeutronSfcDriver:'ovn'
There could be other param defaults needs to be added and i'm not aware of.

Change-Id: I82fc10fb75ed4d804eda8a1b7bee5dd63e5efd11
2018-08-15 11:07:08 -05:00
Zuul
5fadfd093f Merge "Add host routes to subnets" 2018-08-14 19:40:21 +00:00
Martin Mágr
c56e9349f2 Enable collectd to connect to metrics QDR
This patch enables collectd on overcloud nodes to connect to local QDR
running on each overcloud node.

Depends-On: I4cb6aa95e253b7fd19ed265fbcba0dfe6663592d

Change-Id: I1d95454f049ca22d694b21b5102e24c63c6009cd
2018-08-14 14:22:13 +00:00
Zuul
39e360624e Merge "Break out image prepare into its own "service"" 2018-08-10 02:31:33 +00:00
Zuul
e7bde70073 Merge "Add NovaResumeGuestsStateOnHostBoot and NovaResumeGuestsShutdownTimeout" 2018-08-08 12:39:02 +00:00
Zuul
b59deaefc4 Merge "Mount /usr/lib/heat on undercloud Heat" 2018-08-06 20:33:00 +00:00
Zuul
4224bdc7ff Merge "Fix Neutron SFC environment file" 2018-08-06 20:32:58 +00:00
Zuul
122fe67772 Merge "Drop obsolete environment for overcloud ceph-upgrade run" 2018-08-06 17:38:56 +00:00