Currently we don't test the configuration with 5 controllers,
change the number of l3 agents per router from 5 to 3.
Change-Id: I84bcb196fb78006c02ba0e860cc2e69420081b87
Airship Seaworthy installation requires a set of valid DNS
names to be configured, ensure that the user register
these names prior to running the deployment.
Change-Id: I7846e5bdcaf55560f8a0d841fd3dc1db7c912490
On April 19, OpenStack completed the migration from openstack.org to
opendev.org [0]. During this migration, Airship projects moved from the
"openstack" namespace to the "airship" namespace. This commit makes
preliminary updates to gate and developer scripts to account for the
migration and fix broken integration gates.
[0] http://lists.openstack.org/pipermail/openstack-discuss/2019-April/005011.html
Change-Id: I88c4d96a756c59dd68ce8c3b801eba9ca8a6f8db
This commit adds a site linting gate for the new airsloop site.
Additionally, this change aims to standardize the names of all gates and
creates a parent job for site linting gates.
Change-Id: Ia8fa428909adf09c584540cfe4e5803bd3ca2420
Currently, Airskiff deployments fail in Airskiff due to pod a missing
helm-toolkit snippet. This change updates the OSH-infra reference to a
version that includes the missing snippet.
Change-Id: Iad523ecacf5563b4aa3c1ddb4b2a058dfe8c639c
`tools/deckhand_load_yaml.sh` script from shipyard uses `docker run`
to upload the documents to deckhand, `-v` parameter to mount
the volume requires an absolute path to the directory to work
correctly.
Change-Id: Ice1d0012b6bcae9652d54f10cf65985e37ca5d77
Sloop type/site is a minimalistic approach to Airship with reduced
requirements towards hardware and external dependencies while keeping
all the functional features.
Major differences compared to reference site airship-seaworthy
- Two bare-metal server setup with 1 control, and 1 compute.
Most components are scaled to a single replica and doesn't carry
any HA as there is only a single control plane host.
- No requirements for DNS/certificates.
HTTP and internal cluster DNS is used.
- Ceph set to use the single (root) disk. This generally
provides minimalistic no-touch ceph deployment.
No replication of ceph data (single copy).
- Simplified networking (no bonding).
Two network interfaces are used by default (flat PXE, and DATA network
with VLANs for OAM, Calico, Storage, and OpenStack Overlay)
- Generic hostnames used (airsloop-control-1, airsloop-compute-1) that
simplifies generation of k8s certificates
- Usage of standard Ubuntu 16.04 GA kernel (as oppose to HWE)
Change-Id: I4944fcae7d29ed8799d810c93efb0120b6b3a105
After certificates generated by promenade are copied into
site specific directory, YAMLs in *_collected directory
should be updated.
Change-Id: Iea5b1cb98471605025973d56dacda51f647e62f3
This commit replaces the kubeadm Kubernetes deployment script with the
new OpenStack-Helm infra minikube deployment script.
[0] https://review.openstack.org/618785
Change-Id: I36c7637a983308891914db7a1cac0907e2724712
Currently, Airskiff deployment scripts build images of the Airship
components locally so that local changes can be deployed with ease;
however, pulling images with the latest tag has the same effect because
locally built images take precedence over pulling images from the
internet. Therefore, a developer can still build the images locally and
deploy them using the Airskiff deployment scripts.
Depends-on: https://review.openstack.org/633007
Change-Id: I3dabc86a33651dd082581310fbacb994db144481
Fixes the error when upgrade nova chart that compains the
airship-nova-test pod alrady exists when upgrade Nova chart.
Change-Id: I26e5e32614d1fd2880c33501bde9638f37606857
This commit introduces a global chart and chart group for NFS
provisioner, a chart in the OpenStack-Helm-Infra repository [0]. The NFS
chart will be required for Airskiff when deploying global UCP charts.
[0] https://git.openstack.org/cgit/openstack/openstack-helm-infra/tree/nfs-provisioner
Change-Id: I9c6464f08e6ce54bdca72525cdef04df7f14edc5
Add name and component labels to the memcached, ceph-config charts and
horizon charts and ucp chart groups in the global so they can be
referenced by customized sites.
Change-Id: I54aad9582841fc2d91a103aeb28b162660bd1b0f
The current default version of HAProxy is vulnerable to multiple CVEs:
CVE-2018-20102
CVE-2018-20103
CVE-2018-20615
Which HAProxy versions >=1.8.17 addresses
Change-Id: I8a387a43976dd105ea3c1dd9b74cd435a8f56864
This updates the fluent-logging chart to match the input configs
used in the upstream chart, primarily focused on moving from the
sqlite db file tracking mechanism to the in memory mechanism
instead. This also adds the appropriate fluentbit filter config
for throttling the number of records being forwarded to fluentd
Change-Id: I68ebf05b1b9fcf2a98b4717b74e3d13050446a09
Set `--tls-cipher-suites` to golang defaults minus 3DES
Implementation of change made in
https://review.openstack.org/#/c/634815/
Change-Id: Icbeded84d5973b042a779ba20569654d2d91b563
All changes are in Updater tool.
1) Cache results of requests to quay.io
2) Fix formatting of strings and strings in logs
3) Improve logging for http requests to quay.io
4) Fix failure when --out-file is specified with path
5) Fix quay.io HTTP 301 permanent redirect from '.../tag' to '.../tag/'
Change-Id: I7d5cec65c713be261af0997774ee945545b5090a
This modifies the RabbitMQ Armada charts to wait specifically
for the RabbitMQ StatefulSets to complete prior to proceeding.
This is more robust than the default Pod waiting, as Pod waiting
for SS's has a race condition such that all Pods are likely
Running and Ready prior to any action having been taken, during
and upgrade scenario.
This change leverages recent Armada resource-based wait functionality.
Change-Id: I3867ce6966047d6b877a9bfa872defc0eda9693a
During the initial configuration it's required to
configure a set of valid certificates for ingress.
Make it more explicit so people don't miss this step.
Change-Id: Ie6477f934688467b7d5dfe1cc8191f6acff29a21
The latest version of Armada introduced a separate timeout
value for tests [1], a default value for the timeout is 300,
which is not large enough for Neutron tests.
Also add wait.labels to ensure automatic deletion of test
pods [2].
[1] https://review.openstack.org/#/c/618585/
[2] https://review.openstack.org/#/c/629313/
Change-Id: I86b1f9a8f17c273cf990189b2ffb07d60e3814b9