public_virtual_ip previously required the External network to be
present in networks data. Add a conditional to use the VIP on the
ctlplane if the External network is not in networks data.
Closes-Bug: #1774401
Change-Id: Ie6c3d7124d11ee89788b432da39df16f031fcf12
Add's a conditional to only include internal_api_virtual_ip if
InternalApi network is defined in custom networks.
According to code comment internal_api_virtual_ip is only used
by Contrail.
Change-Id: Ifd8f59bd03c9bab1283e580a64957f201eb8f335
Closes-Bug: #1772124
If compute nodes are deployed without deploying/updating the controllers then
the computes will not have cellv2 mappings as this is run in the controller
deploy steps (nova-api).
This can happen if the controller nodes are blacklisted during a compute scale
out. It's also likely to be an issue going forward if the deployment is staged
(e.g split control plane).
This change moves the cell_v2 discovery logic to the nova-compute/nova-ironic
deploy step.
Closes-bug: 1786961
Change-Id: I12a02f636f31985bc1b71bff5b744d346286a95f
We use update_identifier ansible variable to check if we need to
re-run deployment tasks. Though there is no bug as we use
DeployIdentifier heat param for it, it's little confusing
(UpdateIdentifier was meant for package updates).
This also removes usage of UpdateIdentifier/update_identifier in
all_nodes_config.j2.yaml. We can deprecate/remove the heat param in a
subsequent patch.
Change-Id: I36ed62ae605a2d8f8f139b50646144b143d5e5f4
This hiera key is useful for when scripts want to figure out what tool
to call. This way they only need to call hiera in order to figure that
out.
Change-Id: I63dfd339a68ee1730e84cdcc32856f2fb4590cf4
This can be used to replace the per-role bootstrap_nodeid_ip,
and the redis-base template is updated to use the new hiera
key.
The old bootstrap_nodeid_ip appears to only be used for redis,
so the old key is removed, with an upgrade release note added
should any out-of-tree services reference this value.
Partial-Bug: #1792613
Change-Id: I830d5b9bae3e9d65c2c393e3dcdf70bffdb1ac7b
The AllNodesExtraMapData parameter is used to inject additional
hieradata into the all_nodes hierdata file on each node. The injected
data will be deeploy merged with the calculated all_nodes data for the
stack.
The parameter can be taken advantage of for split-controlplane use cases
where the hieradata from the control stack needs to be populated into
the separate compute stacks.
To easily get the hieradata out of the control stack, a new stack output
is added, AllNodesConfig.
Partially Implements: blueprint split-controlplane
Change-Id: I7b865bf82520006eef3ac2f36df34b1f3c34e642
Add's a conditional to only include internal_api_virtual_ipi
if InternalApi network is defined in custom networks.
Closes-Bug: 1772124
Change-Id: I332355dc63c414aa411b3c1e09dc950b54d5d175
The new master branch should point now to rocky.
So, HOT templates should specify that they might contain features
for rocky release [1]
Also, this submission updates the yaml validation to use only latest
heat_version alias. There are cases in which we will need to set
the version for specific templates i.e. mixed versions, so there
is added a variable to assign specific templates to specific heat_version
aliases, avoiding the introductions of error by bulk replacing the
the old version in new releases.
[1]: https://docs.openstack.org/heat/latest/template_guide/hot_spec.html#rocky
Change-Id: Ib17526d9cc453516d99d4659ee5fa51a5aa7fb4b
Replacing the count with loop.index in all-nodes-config.j2.yaml
after the Jinja changes
Change-Id: Id703f6c85f27cdde0b2d48b18e938e55d31a491a
Closes-Bug: #1754679
Configures certs/key for nova-novnc vencrypt when TLS is enabled on the
internal network. A dedicated IPA sub-CA can be used to restrict access,
however by default the main IPA CA is used.
Depends-On: Ic73bcbdbecc1bc05f43acdd5480370f37ead3fb8
Change-Id: I67ffd847dc2d1949833a9d7039ad51e4364e02da
This change allows FASTFORWARDUPGRADE to be fed to puppet-tripleo
allowing mainifests to act according when applied during FFU.
Change-Id: I8792937c2524c31becfb8a9f28047b73617c0fc3
If ceph-nfs (ganesha) service is enabled, it's set up by ceph-ansible
and it can be used as a manila backend. Manila can be configured to use
ceph either directly (manila-cephfsnative-config-docker.yaml env file)
or through ganesha (environments/manila-cephfganesha-config-docker.yaml
env file).
Change-Id: Ib408c7827e5fba0c1b01388db26363806fc64370
Partially-Implements: blueprint nfs-ganesha
This sets the cloud_name hiera parameter using jinja for all
networks including any custom networks.
It also cleans up hiera parameters for virtual ips that are no
longer being used due to https://review.openstack.org/#/c/531037/.
The internal_api_virtual_ip parameter must be kept because its
used for contrail.
Change-Id: I876263d374804e9f032f511112baa5fa7e67b49b
Closes-Bug: 1740953
Adds new hiera parameters for VIPs for all isolated networks including
any custom composable networks. The existing hard-coded network parameters
can be removed when the puppet-tripleo change
https://review.openstack.org/#/c/531037 merges that no longer uses them.
The new network_virtual_ips paramater contains the network name, vip, and
an index used to generate the vrouter_id in puppet-tripleo.
Change-Id: If8d3219a0714e3db34980e884dce84912a837865
Partial-Bug: 1741129
These were hardcoded, even though the rest of the network-related bits
were dynamically generated with jinja.
This will end up creating the same entries as before, skipping the VIP
for the Tenant network and the Management network (which is not included
in the default roles). Also, the external network will now have an extra
hiera entry called external_virtual_ip, besides the public_virtual_ip.
They will have the same value, however, external_virtual_ip is
automatically generated as opposed to the public_virtual_ip. Hopefully
we can remove the instance of public_virtual_ip at some point and rely
on the automatically generated entries only.
Change-Id: I7f5285e2936b2158a4a8a5edc97a6a09f891fb1a
Related-Bug: #1732457
The compute service list is polled until all expected hosts are reported or a
timeout occurs (600s).
Adds a cellv2_discovery flag to puppet services. Used to generate a list of
hosts that should have cellv2 host mappings.
Adds a canonical fqdn and that should match the fqdn reported by a host.
Adds the ability to upload a config script for docker config instead of using
complex bash on-liners.
Closes-bug: 1720821
Change-Id: I33e2f296526c957cb5f96dff19682a4e60c6a0f0