9850 Commits

Author SHA1 Message Date
Harald Jensås
ce9a83c8cd Use get_attr to set %network%InterfaceDefaultRoute
For networks in role.default_route_networks use get_attr
to fetch the gateway_ip of the port's subnet and pass
it to the nic-config template.

Changes the default in nic-config templates to ''.

Closes-Bug: #1821046
Change-Id: Ic07a3166fafba3aa307a9e1953b3e3be2594a6f5
2019-03-21 00:26:26 +01:00
Zuul
e4854d6ce1 Merge "Change OS::TripleO::Services::OVNDBs to non ha file" 2019-03-20 15:53:24 +00:00
Zuul
0a841e3433 Merge "Remove UndercloudCtlplaneSubnets defaults in UC env" 2019-03-20 12:31:43 +00:00
Zuul
1fc250e4dc Merge "Remove UpgradeRemoveUnusedPackages" 2019-03-19 20:49:05 +00:00
Kamil Sambor
a2db936e70 Change OS::TripleO::Services::OVNDBs to non ha file
Change-Id: I61c2ba54db43ebfc6957cb46fd66b9ec8abfadd5
Closes-Bug: #1820844
2019-03-19 18:51:43 +00:00
Zuul
62903f1e5e Merge "Include python-panko client." 2019-03-19 17:36:20 +00:00
Zuul
7457252d7c Merge "Only bind-mount internal TLS haproxy dirs if enabled" 2019-03-19 14:47:49 +00:00
Zuul
f31be36ea0 Merge "Clean up after tripleo_persist and tripleo_transfer" 2019-03-19 14:29:34 +00:00
Sergii Golovatiuk
2a8fcc4ddf Remove UpgradeRemoveUnusedPackages
UpgradeRemoveUnusedPackages is not used anymore. All packages are
supposed to be removed on undercloud upgrade to 14.

Change-Id: Ie6b739390ec0ae0c5773a5a6c63b49422195623a
2019-03-19 13:40:02 +00:00
Zuul
af2b4319df Merge "Always include step tasks in external update/upgrade" 2019-03-19 13:13:39 +00:00
Zuul
e0177734e7 Merge "Run chown for nova log files on every run to fix wrong permissions" 2019-03-19 10:29:56 +00:00
Juan Antonio Osorio Robles
b848cef629 Only bind-mount internal TLS haproxy dirs if enabled
We were bind-mounting those directories when public TLS was enabled...
it needed to be in the internal TLS conditional.

Change-Id: I7487c0f3b495dce2f5ce3028e8516cc3c215f896
Closes-Bug: #1820577
2019-03-19 10:15:25 +02:00
Zuul
b2900e22e6 Merge "Set the NTP server on Sahara too" 2019-03-19 03:00:49 +00:00
Zuul
3fb11ac0a1 Merge "Open firewall port 3300 for ceph monitors v2 protocol" 2019-03-19 02:54:16 +00:00
John Fulton
4c3438970c Open firewall port 3300 for ceph monitors v2 protocol
In addition port 6789, open port 3300 too for ceph monitors.
As per the Ceph documentation:

"Ceph monitors now bind to IANA-assigned port 3300 (ce4h or 0xce4)
for the new v2 protocol, while also binding to the old default
port 6789 for the legacy v1 protocol."

Change-Id: Ib9a69cc9379e84a47bdc00a175ee33bfac4119eb
Closes-Bug: #1820359
2019-03-18 16:55:57 -04:00
Zuul
5381bff301 Merge "fix tox python3 overrides" 2019-03-18 19:57:37 +00:00
Nagasai Vinaykumar Kapalavai
8b6ea5e149 Include python-panko client.
Include python-panko client in openstack-clients,
untill panko is removed from osp.

Change-Id: I47a17c0fd79d13058a317563c2b691efc3ce9555
Closes-Bug: #1816469
2019-03-18 14:49:28 -04:00
Harald Jensås
ea80847f96 Remove UndercloudCtlplaneSubnets defaults in UC env
The defaults in environments/undercloud.yaml will be
merged with what the was defined in undercloud.conf.
If the 'ctlplane-subnet' is not used in undercloud.conf
the default is merged, and we end up with an additional
subnet that was not requested by the undercloud installed.

This change set the default to {} in:
  environments/undercloud.yaml

Also add's a comment to hightlight that there should be
a empty dict default.

Closes-Bug: #1820330
Change-Id: Idc17154b2e1e143ba4e84b9b96f5355fc9230172
2019-03-18 18:32:29 +01:00
Zuul
de325088de Merge "Enable authtoken cache" 2019-03-18 11:53:11 +00:00
Martin Schuppert
c62247fa8b Run chown for nova log files on every run to fix wrong permissions
If nova-manage command was triggered on a host for the first time as root
(usually manual runs) the nova-manage.log gets created as root user. On
overcloud deploy runs the nova-manage command is run as nova user. In such
situation the overcloud deploy fails as the nova user can not write to the
nova-manage.log. With this change we run the chown of the logs files on
every overcloud deploy to fix the nova-manage.log file permissions.

Closes-Bug: #1820590

Change-Id: Iaa8db09712da6c0d9553fab39d7d5b50fa7cf287
2019-03-18 12:11:23 +01:00
Zuul
fa3d65ff4b Merge "rename rsyslogd service to rsyslog and deal with lack of reload." 2019-03-15 22:43:40 +00:00
Alex Schultz
19fec5d9d0 Enable authtoken cache
For the undercloud we can specify memcache that can be shared by all the
services. Additionally because we need to still allow folks to configure
UndercloudExtraConfig we set it to deep_merge

Change-Id: I07f9a8e9c454a5e41d0a8b766d5d754f63126b90
Closes-Bug: #1820342
2019-03-15 14:21:45 -06:00
Zuul
878d11eff1 Merge "Add python36 job" 2019-03-15 19:30:49 +00:00
Zuul
317c4a966d Merge "Increase log level for command failures" 2019-03-15 19:15:19 +00:00
Zuul
8968b6e349 Merge "Drop the old python35 job" 2019-03-15 19:04:19 +00:00
Zuul
ec27b3d357 Merge "flatten the gnocchi service configurations" 2019-03-15 19:02:38 +00:00
Zuul
e5f7bbc26e Merge "flatten opendaylight-api service" 2019-03-15 18:39:35 +00:00
Zuul
6c5635bdf0 Merge "Fix: Unknown Property ML2HostConfigs" 2019-03-15 18:16:17 +00:00
Luca Miccini
256d763d4c rename rsyslogd service to rsyslog and deal with lack of reload.
Overlcloud deployment fails during the "Reload services" TASK:

TASK [Reload services] *********************************************************
Friday 15 March 2019 07:51:43 +0000 (0:00:00.560) 0:02:53.361 **********
skipping: [controller-0] => (item=rsyslogd) => {"changed": false, "item": "rsyslogd", "skip_reason": "Conditional result was False"}
skipping: [controller-0] => (item=crond) => {"changed": false, "item": "crond", "skip_reason": "Conditional result was False"}
skipping: [controller-1] => (item=rsyslogd) => {"changed": false, "item": "rsyslogd", "skip_reason": "Conditional result was False"}
skipping: [controller-1] => (item=crond) => {"changed": false, "item": "crond", "skip_reason": "Conditional result was False"}
skipping: [controller-2] => (item=rsyslogd) => {"changed": false, "item": "rsyslogd", "skip_reason": "Conditional result was False"}
skipping: [controller-2] => (item=crond) => {"changed": false, "item": "crond", "skip_reason": "Conditional result was False"}
failed: [compute-0] (item=rsyslogd) => {"changed": false, "item": "rsyslogd", "msg": "Could not find the requested service rsyslogd: host"}
....

Checking "compute-0" it looks like the service name is "rsyslog":

root@compute-0 ~]# systemctl |grep rsys
  rsyslog.service

Simply renaming the service is not sufficient, as the unit file does not
support the reload OP:

[Service]
Type=notify
EnvironmentFile=-/etc/sysconfig/rsyslog
ExecStart=/usr/sbin/rsyslogd -n $SYSLOGD_OPTIONS
UMask=0066
StandardOutput=null
Restart=on-failure

Lacking better options we need to restart rsyslog.

Change-Id: I3f666455a9c5d95536ec801cee86f83bef80fa81
Closes-Bug: #1820166
2019-03-15 14:55:00 +01:00
Zuul
5b056802f4 Merge "octavia: pass container cli to external deploy tasks" 2019-03-15 11:05:19 +00:00
Zuul
0bb76dc9fc Merge "Avoid "-a" cp option in order to avoid SELinux AVC" 2019-03-15 02:06:45 +00:00
Brent Eagles
1c33183c05 octavia: pass container cli to external deploy tasks
The octavia ansible playbooks restart the octavia containers to pickup
generated configuration so this needs to be passed into the tasks.

Depends-On: I6ef5ae0cf8c8acdb6e9a9ab78e0deddd0ea968ec
Change-Id: I1ba5e2fc96f6a9e2cad44e1b18f32612919fd796
2019-03-14 12:12:45 -02:30
98k
e7d3bd90c1 fix tox python3 overrides
We want to default to running all tox environments under python 3, so
set the basepython value in each environment.

We do not want to specify a minor version number, because we do not
want to have to update the file every time we upgrade python.

We do not want to set the override once in testenv, because that
breaks the more specific versions used in default environments like
py35 and py36.

Change-Id: Ifa8bcc1c1c29551a0ff80edc82699028c8305fe6
Closes-Bug:  #1801657
2019-03-14 08:51:55 +00:00
Zuul
b9fd01cc68 Merge "Request certificate for using host service principals" 2019-03-14 07:54:06 +00:00
Cédric Jeanneret
c55cf61c99 Avoid "-a" cp option in order to avoid SELinux AVC
Using "cp -a" in a container might lead to SELinux failures, since this option
is a shortcut for "-dR --preserve=all". The "all" has the context, and we do
not allow SELinux relabelling within containers.

Splitting the "-a" to "-dR --preserve" will provide the same end results, but
without the relabelling, preventing audit.log to fill up during the deploy.

Closes-Bug: #1819459
Change-Id: Ic280ad8e95fcc32986987f5abaa524f171d7c13b
2019-03-14 08:48:24 +01:00
Zuul
b80abea3b4 Merge "Manage system timezone with ansible" 2019-03-14 00:15:40 +00:00
Alex Schultz
df403c2cdf Add python36 job
We should be running a python3 job for tripleo-heat-templates and since
we dropped the old 3.5 job, let's add the correct 3.6 job.

Change-Id: I93bd7bf988c881496ecee0c5d4e2bc97a5047571
2019-03-13 17:01:24 -06:00
Alex Schultz
9f0d23c78a Drop the old python35 job
We are running the regular jobs with constraints now so we don't need to
be running this job. Additionally it's not functioning correctly with
the switch to bionic

Change-Id: I41bf5002bd40654d55456a5cdafcef6b76b1f62e
2019-03-13 16:56:56 -06:00
Zuul
73dcbc459c Merge "Give sudo powers in Disable mysql task." 2019-03-13 22:00:40 +00:00
Zuul
ad11380a15 Merge "Allow embedded Skydive etcd port" 2019-03-13 21:13:28 +00:00
Zuul
792f41ceb7 Merge "Introduce OpenShiftAnsiblePath parameter" 2019-03-13 17:43:41 +00:00
Alex Schultz
b9d382c514 Increase log level for command failures
It's hard to find the actual root cause of the container configurations
when looking in the logs because the error messages are just WARNINGs.
Let's raise the messages where the real error message is to an ERROR
level.

Change-Id: Icb7138de7f6065c758cd39cb0e433c6412442b1c
Closes-Bug: #1819931
2019-03-13 09:12:46 -06:00
Zuul
aae453c5af Merge "Reload rsyslog/cron when we change timezones" 2019-03-13 14:35:02 +00:00
Zuul
96689c079a Merge "Move Designate to Experimental" 2019-03-13 14:34:58 +00:00
Alex Schultz
866a7f79e4 Manage system timezone with ansible
Switch to use ansible's timezone module for timezone management of the
overcloud and undercloud systems. This change deprecates using puppet to
manage the timezone configuration.

Change-Id: Ie1a92ca5677833f302daa71cba42c5091302b2aa
2019-03-13 08:21:35 -04:00
Zuul
84ac7282cd Merge "Support ctlplane subnet host routes from undercloud.conf" 2019-03-13 11:53:46 +00:00
Zuul
71a144dc1e Merge "OVN: Add VLAN to NeutronNetworkType" 2019-03-13 00:24:33 +00:00
Zuul
37e44456a9 Merge "Switch ContainerCli to podman by default" 2019-03-12 21:39:59 +00:00
Zuul
5b95b446e3 Merge "Make sure ContainerCli is set to the stack" 2019-03-12 21:39:57 +00:00
Dan Prince
3bcea8e0c4 Fix: Unknown Property ML2HostConfigs
This should fix tripleo-ci-centos-7-scenario012-standalone
which is failing in CI.

We don't need to pass ML2HostConfigs to the base resource.

Change-Id: I19f6bff7b8b75ca0f48edd2a94c2f46ec96eb44a
2019-03-12 16:33:20 -04:00