1698 Commits

Author SHA1 Message Date
hanish gogada
fb2843550d Added NovaOVSDBConnection parameter
This parameter would be used by os-vif repo, this would
be used in ovs-vsctl commands to reach remote ovsdb over
tcp/ssl connection.

Depends-On: I0cb78399a777e70ed7c1bf7225574bed146728e1

Change-Id: Ie50e3e60cf44d48cf9cb6f3304520df257906b16
Signed-off-by: hanish gogada <hanishgogadahcu@gmail.com>
2018-08-06 17:06:21 +05:30
Ricardo Noriega
450aed3ac8 Fix Neutron SFC environment file
Change-Id: I390900b343513ad5689b5534af4014ad3fe22c14
Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2018-08-06 13:07:02 +02:00
Thomas Herve
7cf4a316cc Mount /usr/lib/heat on undercloud Heat
We need the tripleo common on the undercloud heat, let's mount an
additional volume to share them.

Change-Id: If306862f5a9b7455165523ab7b8350d18395edb7
Closes-Bug: #1784569
2018-08-03 14:27:03 +02:00
Zuul
21dadd4ef3 Merge "Disable recursion in Designate-managed BIND" 2018-08-03 00:08:27 +00:00
Zuul
1fb2bda4ca Merge "adding vxlan into Neutuon drivers for networking-ansible" 2018-08-02 16:00:05 +00:00
Jiri Stransky
20f614ba9a Ceph update and upgrade in config-download era
Correct playbook selection is now done automatically using
external_update_tasks and external_upgrade_tasks. The
CephAnsiblePlaybook is still usable and highest priority if set to
something else than the default. It can also be set to [] to
completely skip ceph-ansible playbook execution.

Closes-Bug: #1783949
Change-Id: If7955b31eda432dd61331281ad3d8f25a335fdfe
Depends-On: Ifdf5f1175849f79b98c76b4bcdef2a70f8f1fedb
2018-08-02 15:04:22 +02:00
Jiri Stransky
b82f743ab1 Drop obsolete environment for overcloud ceph-upgrade run
After switching from Heat workflow resources to external_deploy_tasks,
the `ceph-upgrade run` command no longer works and can be
dropped. Instead we'll be using `external-update run` and
`external-upgrade run` commands, which will not do stack update. It
will run Ansible and for Ceph specifically it will set the necessary
playbook directly via Ansible.

Partial-Bug: #1783949
Change-Id: I3490163bc426d070e245387201d64e07b908c74f
Depends-On: I228ce6228d0bd0bd4d40bc7a7cdd6bfe98a7a6ed
2018-08-02 15:04:22 +02:00
Dan Radez
f55f4f6f84 adding vxlan into Neutuon drivers for networking-ansible
Compute nodes that launch VMs will still need vxlan enabled
vxlan was left out of the enabled driver types in neutron
for the ml2-ansible environment files

Change-Id: Ib56610e403ac1e3a41cb9b65b57c40f12f7b5d54
Closes-Bug: #1783776
2018-08-02 02:13:11 +00:00
Steve Baker
1bda1fd9a7 Break out image prepare into its own "service"
This makes the docker-registry service focused on installing the
registry, as it should be. Also this makes it possible to invoke this
service during overcloud deploy too.

This change also switches to calling the tripleo-common script
tripleo-container-image-prepare instead of the full openstack command.
This will allow a mistral image to do a prepare without depending on
the python-tripleoclient package.

The {{role}}Services and {{role}}Count are propagated to
tripleo-container-image-prepare so that images are filtered correctly.

sudo is used instead of become:true so that the tripleo-common mistral
sudoers pattern matches.

Depends-On: Ic1648e43f45bb7604d4c0f9abf247a475fb23707
Change-Id: Ibc16bed673de7b22cd8eef3f6fb0d45871083873
Blueprint: container-prepare-workflow
2018-08-02 11:29:39 +12:00
Martin Mágr
b76d7623ac QDR for metrics collection purposes
This patch adds composable new service (QDR) for containerized deployments.
Metrics QDR will run on each overcloud node in 'edge' mode. This basically
means that there is a possibility that there will be two QDRs running
on controllers in case that oslo messaging is deployed. This is a reason why
we need separate composable service for this use case.

Depends-On: If9e3658d304c3071f53ecb1c42796d2603875fcd
Depends-On: I68f39b6bda02ba3920f2ab1cf2df0bd54ad7453f
Depends-On: I73f988d05840eca44949f13f248f86d094a57c46
Change-Id: I1353020f874b348afd98e7ed3832033f85a5267f
2018-07-31 21:55:45 +00:00
Zuul
ca16dd877c Merge "Update/upgrade prepare/converge in config-download era" 2018-07-31 21:50:38 +00:00
Zuul
311c2de714 Merge "Add OVS-DPDK parameter as part of roles file" 2018-07-31 12:21:09 +00:00
Martin Schuppert
9654393f24 Add NovaResumeGuestsStateOnHostBoot and NovaResumeGuestsShutdownTimeout
NovaResumeGuestsStateOnHostBoot (true/false) parameter which
configures whether or not to start again instances which were running at
the time of a compute reboot.
This will set the resume_guests_state_on_host_boot parameter in nova.conf
and configures and enables libvirt-guests with a dependency to the
docker service to shutdown instances before the libvirt container gets
stopped.
NovaResumeGuestsShutdownTimeout specifies the number in seconds for an
instance to allow to shutdown.

Change-Id: I946600ebbc3afd88385ca89015e8f6a6c46f46ef
Closes-Bug: 1778216
Depends-On: I2766cdd66ff17756daaf1a75ad516a7af6eebddc
Depends-On: Id1cc2e75af316b864cebf601395f1111b7fb049a
2018-07-31 12:24:08 +02:00
rabi
26e0ce7702 Add support for containerized networking-ansible ML2 plugin
Co-Authored-By: Derek Higgins <derekh@redhat.com>
Change-Id: I8500de7ec71a8efa567a0b3aa29725ef235795bc
2018-07-30 20:48:22 +00:00
Harald Jensås
4e44547533 Add host routes to subnets
This change adds a new routes field to the network
definition in network_data.yaml. This field contains
a list of network routes in JSON, e.g.
  [{'destination':'10.0.0.0/16','nexthop':'10.0.0.1'}].

This list is used to set the ``host_routes`` property
of each networks subnet.

Co-Authored-By: Dan Sneddon <dsneddon@redhat.com>
Partial: blueprint tripleo-routed-networks-templates
Depends-On: Ifc5aad7a154c33488a7613c8ee038c92ee6cb1a7
Change-Id: I33b34f1445f4203fbf25edeb093b37c7494c664f
2018-07-30 09:42:19 +02:00
Zuul
9fd6f71fd8 Merge "Fix GlanceRegistry FFU cleanup" 2018-07-26 09:23:42 +00:00
Zuul
3e875145cd Merge "DnsServers using get_attr" 2018-07-25 00:53:28 +00:00
Zuul
7ce066eba3 Merge "EC2MetadatIp using get_attr" 2018-07-25 00:36:06 +00:00
Dmitry Tantsur
42c118244a undercloud: revert to using the iscsi deploy interface by default
The direct deploy interface looks promising in the scale tests so far,
but it prevent local testing and PoC with nodes with less than 8 GiB
RAM because it has to convert the overcloud-full image in memory.

This change changes back to the iscsi deploy interface, leaving
the direct deploy interface fully configured and opt-in.

This patch will likely be reverted in Stein.

Change-Id: I5f8126474ab15a310b4ba305c4d537b93e9f0399
Related-Blueprint: ironic-direct-deploy
2018-07-24 16:12:22 +02:00
Martin Schuppert
5dd4018141 Instance create fails due to wrong default secontext with NFS
With NovaNfsEnabled instance create fails due to wrong default
secontext. The default in THT is set to nova_var_lib_t in
Ie4fe217bd119b638f42c682d21572547f02f17b2 while
system_u:object_r:nfs_t:s0 should have access. The virt_use_nfs
boolean, which is turned on by openstack-selinux, should cover
this use case.

This changes the default to context=system_u:object_r:nfs_t:s0

Change-Id: I2a28462b6f6bc9f8a41a81ea8c65471f05df3b85
Closes-Bug: 1781894
2018-07-24 08:12:07 +02:00
Zuul
b0a08fa572 Merge "Update manila environment file names" 2018-07-24 04:49:31 +00:00
Zuul
ad5d4d1db1 Merge "ControlPlaneDefaultRoute using get_attr" 2018-07-24 01:34:22 +00:00
Zuul
dfc09b6ff1 Merge "ControlPlaneSubnetCidr using get_attr" 2018-07-24 01:34:20 +00:00
Tom Barron
08e67b8ff0 Update manila environment file names
to eliminate special 'docker' names.

Containerized manila is now the standard way to deploy
so we can avoid confusion by just using the regular
manila environment file names for these rather than having
some manila environment files with 'docker' in their names.

Note that we are using the content of
environments/manila-cephfsnative-config-docker.yaml
for
environments/manila-cephfsnative-config.yaml.  This resolves an
issue wherein the parameters in the latter file were not updated
when support for the CephFS-NFS back end was added [1].

Closes-Bug: #1782622

[1] Ib408c7827e5fba0c1b01388db26363806fc64370

Change-Id: I08431d848158846a434fecc98d3bee838c7fad68
2018-07-19 18:46:10 +00:00
Zuul
df762d810b Merge "OVN: Set sysctl value 'net.ipv4.ip_nonlocal_bind' to 1" 2018-07-18 13:22:28 +00:00
Zuul
24400d1132 Merge "Remove bogus "EXPERIMENTAL" in neutron-sriov.yaml environment file" 2018-07-18 05:16:54 +00:00
Zuul
07ab589a9c Merge "Lower Ceph PGs count in scenario004" 2018-07-17 22:58:37 +00:00
Numan Siddique
5ed628f353 OVN: Set sysctl value 'net.ipv4.ip_nonlocal_bind' to 1
When OVN DBs pacemaker bundle is started on the controller nodes,
all the ovsdb-servers are configured to listen on the virtual ip
(on ports 6641/6642). But only master node is configured with virtual ip.
On the other nodes, we see the below error messages

ovsdb_jsonrpc_server|ERR|ptcp:6641:172.17.1.18: listen failed: Cannot assign
requested address.

The commit [1] addressed this issue in puppet-tripleo by setting the
sysctl value 'net.ipv4.ip_nonlocal_bind' to 1 using puppet's sysctl::value.
But the ovn-dbs.yaml service file is missing this puppet tag when the
container 'ovn_dbs_init_bundle' is started.

We can fix the issue by defining this tag, but this also requires setting
'privileged=true' when starting the docker container.

Instead, this patch makes use of the t-h-t param 'KernelIpNonLocalBind'
which was introduced in this commit [2].

[1] - I6f762534350a3f96696c87ccd2d14545dccc8a0b
[2] - Idd3d432b8f7eb573d94cd56be8e05614510ebddf

Change-Id: I5ae8cd368bcd58810b18e172ee685fdbf0e48d98
Closes-bug: #1781585
2018-07-17 23:47:19 +05:30
Jiri Stransky
39321cca71 Update/upgrade prepare/converge in config-download era
We inherit the `prepare` commands from deploy, in Rocky we will
automatically get config-download env file there so no need to
explicitly disable DeploymentSteps in *-prepare.yaml files too. We
should also disable the WorkflowSteps in config-download environment,
as they too aren't meant to be used with config-download.

Similarly, for `converge` commands in the *-converge.yaml files we
shouldn't re-enable the DeploymentSteps and WorkflowSteps, as that
would go against using config-download.

Change-Id: I89f54ba9a0a15afd26da4d4b26aba8ef09ebf04b
2018-07-17 20:01:12 +02:00
Zuul
21e89c303f Merge "Remove EXPERIMENTAL warning for manila docker deployments" 2018-07-17 04:08:55 +00:00
Zuul
8b6c0f4f83 Merge "OVN: Add env file to deploy SRIOV with OVN." 2018-07-16 17:29:14 +00:00
Zuul
a0ef7b1fa8 Merge "Add tempest container to docker.yaml" 2018-07-16 17:29:12 +00:00
Zuul
c17fbfd823 Merge "Log more details for container images prepare" 2018-07-16 17:29:07 +00:00
Giulio Fidente
d348ebc34e Lower Ceph PGs count in scenario004
Each OSD can only host maximum 200 PGs, in scenario004 we create 9
pools to enable MDS/Manila and RGW so we need to lower the PGs
count further, compared to scenario001.

Also lowers the values in low-memory-usage.yaml environment file.

Change-Id: If95a0e3fe5aeef61f9712d8006e0f49c11a0c90f
Closes-Bug: 1781910
2018-07-16 16:14:41 +00:00
Tom Barron
91b92ddc0d Remove EXPERIMENTAL warning for manila docker deployments
These warnings should be present through stable/pike
but not thereafter since starting in stable/queens
containerized deployment of manila is supported.

Change-Id: Ib54cba0d336bde11af2adc3968e8ce8a6663aeff
2018-07-16 11:23:01 +00:00
waleed mousa
aaafe82145 Edit environments/ovs-hw-offload.yaml file.
Changing NovaPCIPassthrough parameter to be as a default parameter
not a role parameter

Change-Id: I78335ef1798ef73e81b1283e53c80273b41e3c2c
2018-07-16 05:25:41 +00:00
Saravanan KR
e7d39847bc Add OVS-DPDK parameter as part of roles file
Adding mandatory OVS-DPDK parameter to the roles file instead of
environment file, as it requires to be added for each custom role.

Change-Id: I33fa198228e3e3adcb8e93146d9a9caa46a28895
2018-07-16 09:58:55 +05:30
Zuul
58cb630f75 Merge "Reduce default services for Standalone" 2018-07-15 19:47:12 +00:00
Harald Jensås
52ec1a018b DnsServers using get_attr
Nameservers are configured on the ctlplane subnets by the
undercloud installer, the nameservers are used early during
the deployment, prior to running os-net-config.

Remove the default DnsServer's in THT, replacing it with
an empty list and use get_attr to get the values for
DnsServers for the overcloud from the ctlplane subnet(s).

A conditinal is used in  puppet/role.role.j2.yaml so that
the parameter value is used whenever it is not [] (default)
to provide backwards compatibilityi and in case the user
want to use different DnsServers for the overcloud and
undercloud.

Partial: blueprint tripleo-routed-networks-templates
Change-Id: I5f33e06ca3f4b13cc355e02156edd9d8a1f773cd
2018-07-14 09:19:12 +02:00
Harald Jensås
19381ecffb EC2MetadatIp using get_attr
The route to metadata service is set up in host_routes
of ctlplane subnets by extraconf post deploy::
  extraconfig/post_deploy/undercloud_ctlplane_network.py

Use get_attr on the server resource to resolve attribute
value from the subnet(s) and pass it to the parameter
'EC2MetadatIp' used in the THT/network/config/* templates.

Changes the default for 'EC2MetadatIp' to ''.
Removes the comment that the value should be overriden in
parameters_defaults. It also removes the parameter from
network-environment templates.

A conditinal is used in  puppet/role.role.j2.yaml so that
the parameter value is used whenever it is not '' (the
default) to provide backwards compatibility in case the
user set a different value for this parameter in
network-environment.yaml.

When deploying a routed control plane the network config
templates would previously need to be updated to carry
'EC2MetadatIpLeafX' parameters for each leaf.  By getting
the value to pass from the server resource this change
reduces the required nic-config template customisation.
(Reduces the risk of user error.)

Partial: blueprint tripleo-routed-networks-templates
Change-Id: I9c019ec840a44ca8c5f98be55daea365bc6554ec
2018-07-14 09:18:58 +02:00
Harald Jensås
c649cf0545 ControlPlaneDefaultRoute using get_attr
Use get_attr on the server resource to resolve attribute
value from the subnet(s) and pass it to the parameter
'ControlPlaneDefaultRoute' used in the THT/network/config/*
templates.

Changes the default for 'ControlPlaneDefaultRoute' to ''
as well as the comment that the value should be overriden
in parameters_defaults. It also removes the parameter from
network-environment templates.

A conditinal is used in  puppet/role.role.j2.yaml so that
the parameter value is used whenever it is not '' (the
default) to provide backwards compatibility in case the
user set a different value (different from the one used in
undercloud.conf) for this parameter in
network-environment.yaml.

When deploying a routed control plane the network config
templates would previously need to be updated to carry
'ControlPlaneXDefaultRoute' parameters for each leaf. With
8 Leafs in addition to the network local to the undercloud
that is 8 parameters less to place in the configuration.
By getting the value to pass from the server resource this
change reduces the required nic-config template
customisation (reduces the risk of user error).

Partial: blueprint tripleo-routed-networks-templates
Change-Id: I5139249d55e9ac01761c270b8c0f31ef35595940
2018-07-14 09:11:39 +02:00
Harald Jensås
6ab86a3ebe ControlPlaneSubnetCidr using get_attr
Use get_attr on the server resource to resolve attribute
value from the subnet(s) and pass it to the parameter
'ControlPlaneSubnetCidr' used in the THT/network/config/*
templates.

As the value is now resolved from resource attributes,
this changes the default for 'ControlPlaneSubnetCidr' to ''
as well as the comment that these value should be overriden
in parameters_defaults. It also removes the parameter from
network-environment templates.

A conditinal is used in  puppet/role.role.j2.yaml so that
the parameter value is used whenever it is not '' (the
default) to provide backwards compatibility in case the user
set a different value (different from the one used in
undercloud.conf) for this parameter in
network-environment.yaml.

When deploying a routed control plane the network config
templates would previously need to be updated to carry
'ControlPlaneXSubnetCidr' parameter (in case the subnet
mask is not the same for all the routed network leafs).
With 8 Leafs in addition to the network local to the
undercloud that is 8 parameters less to place in the
configuration. By getting the value to pass from the
server resource this change reduces the required nic-config
template customisation (reduces the risk of user error).

Partial: blueprint tripleo-routed-networks-templates
Change-Id: I92ee0f9a2107cdf1ca5903d3756a235a79c36c73
2018-07-14 09:11:28 +02:00
Zuul
70f94be2e5 Merge "Iterate once in network-environment.yaml" 2018-07-14 02:36:25 +00:00
Zuul
7ca6037499 Merge "Clean up env files for Cinder's Netapp backend" 2018-07-14 02:36:19 +00:00
Zuul
5c2205e779 Merge "Update yaml files for Dell EMC VNX, Unity drivers" 2018-07-13 12:30:33 +00:00
Bogdan Dobrelya
e489e58db4 Log more details for container images prepare
Add a heat param to log tripleo container images prepare
verbose details into a file.

Depends-On: I1c72b5ef0d7acbc4eded422d569f1383d92ad3c2
Change-Id: I000ffeb9b111c4a2a8919fe448dcead922ef03c3
Signed-off-by: Bogdan Dobrelya <bdobreli@redhat.com>
2018-07-13 14:38:51 +03:00
Harald Jensås
4564109600 Iterate once in network-environment.yaml
This replaced multiple for loops with a single loop.
This changes the ordering in the rendered file to have
one section per network, instead of one section per
perameter such as VLAN, AllocationPools.

It also reduces the use of jinja conditionals. This
results in some duplicated comment strings in the
jinja template.

This is a micro optimization, but this makes sense
as a follow on will add the possibility to add
multiple subnets on each network in network_data.yaml.
I.e we avoid additional nested loops over the subnets.

Related: blueprint tripleo-routed-networks-templates
Change-Id: I0f11acaf7c25ff5d240db1daae2dc2b051c0a3b2
2018-07-13 08:40:12 +02:00
Zuul
f713cb7308 Merge "Increase max heat stack depth" 2018-07-12 12:19:35 +00:00
Zuul
6118dec096 Merge "HA support for OpenShift" 2018-07-12 04:25:29 +00:00
Alex Schultz
72b2417e95 Reduce default services for Standalone
With the standalone deployment mechanism, the default list of enabled
OpenStack services is Keystone, Nova (and related), Neutron (and
related), Glance, Cinder, Swift and Horizon. The default list of
disabled of OpenStack services is Aodh, Barbican, Ceilomter,
Congress, Designate, Gnocchi, Heat, Ironic, Manila, Mistral, Panko,
Sahara, Tacker and Zaqar. Disabled services can be enabled by
passing the appropriate environment files to re-enable them during
the deployment.

Change-Id: Ibf49ac61f4a50b429e72ebeb5b35f6524ae8f24d
Related-Blueprint: all-in-one
2018-07-11 16:46:02 -06:00