`promjoin` service should be started on first boot
only to bootstrap a kubernetes cluster.
Create /var/lib/prom.done file to ensure that
Docker and Kubelet do not get downgraded on every
reboot if they had been upgraded manually.
Change-Id: I76027dcde7cb7a4624894b3528abe13e4de174a1
On April 19, OpenStack completed the migration from openstack.org to
opendev.org [0]. During this migration, Airship projects moved from the
"openstack" namespace to the "airship" namespace. This commit makes
preliminary updates to gate and developer scripts to account for the
migration and fix broken integration gates.
[0] http://lists.openstack.org/pipermail/openstack-discuss/2019-April/005011.html
Change-Id: Ie955a777016deceed0d3f7f1aa839fba3cfdcc3e
Currently we don't test the configuration with 5 controllers,
change the number of l3 agents per router from 5 to 3.
Change-Id: I84bcb196fb78006c02ba0e860cc2e69420081b87
Override default "metadata_proxy_shared_secret" parameter.
This secret is used by Neutron to sign instance-id headers
to prevent spoofing when proxying metadata requests.
Change-Id: I771d7f818a18b82d55bf781d71fc95114ac7e78c
Sloop type/site is a minimalistic approach to Airship with reduced
requirements towards hardware and external dependencies while keeping
all the functional features.
Major differences compared to reference site airship-seaworthy
- Two bare-metal server setup with 1 control, and 1 compute.
Most components are scaled to a single replica and doesn't carry
any HA as there is only a single control plane host.
- No requirements for DNS/certificates.
HTTP and internal cluster DNS is used.
- Ceph set to use the single (root) disk. This generally
provides minimalistic no-touch ceph deployment.
No replication of ceph data (single copy).
- Simplified networking (no bonding).
Two network interfaces are used by default (flat PXE, and DATA network
with VLANs for OAM, Calico, Storage, and OpenStack Overlay)
- Generic hostnames used (airsloop-control-1, airsloop-compute-1) that
simplifies generation of k8s certificates
- Usage of standard Ubuntu 16.04 GA kernel (as oppose to HWE)
Change-Id: I4944fcae7d29ed8799d810c93efb0120b6b3a105
Fixes the error when upgrade nova chart that compains the
airship-nova-test pod alrady exists when upgrade Nova chart.
Change-Id: I26e5e32614d1fd2880c33501bde9638f37606857
This commit introduces a global chart and chart group for NFS
provisioner, a chart in the OpenStack-Helm-Infra repository [0]. The NFS
chart will be required for Airskiff when deploying global UCP charts.
[0] https://git.openstack.org/cgit/openstack/openstack-helm-infra/tree/nfs-provisioner
Change-Id: I9c6464f08e6ce54bdca72525cdef04df7f14edc5
Add name and component labels to the memcached, ceph-config charts and
horizon charts and ucp chart groups in the global so they can be
referenced by customized sites.
Change-Id: I54aad9582841fc2d91a103aeb28b162660bd1b0f
The current default version of HAProxy is vulnerable to multiple CVEs:
CVE-2018-20102
CVE-2018-20103
CVE-2018-20615
Which HAProxy versions >=1.8.17 addresses
Change-Id: I8a387a43976dd105ea3c1dd9b74cd435a8f56864
This updates the fluent-logging chart to match the input configs
used in the upstream chart, primarily focused on moving from the
sqlite db file tracking mechanism to the in memory mechanism
instead. This also adds the appropriate fluentbit filter config
for throttling the number of records being forwarded to fluentd
Change-Id: I68ebf05b1b9fcf2a98b4717b74e3d13050446a09
Set `--tls-cipher-suites` to golang defaults minus 3DES
Implementation of change made in
https://review.openstack.org/#/c/634815/
Change-Id: Icbeded84d5973b042a779ba20569654d2d91b563
This modifies the RabbitMQ Armada charts to wait specifically
for the RabbitMQ StatefulSets to complete prior to proceeding.
This is more robust than the default Pod waiting, as Pod waiting
for SS's has a race condition such that all Pods are likely
Running and Ready prior to any action having been taken, during
and upgrade scenario.
This change leverages recent Armada resource-based wait functionality.
Change-Id: I3867ce6966047d6b877a9bfa872defc0eda9693a
The latest version of Armada introduced a separate timeout
value for tests [1], a default value for the timeout is 300,
which is not large enough for Neutron tests.
Also add wait.labels to ensure automatic deletion of test
pods [2].
[1] https://review.openstack.org/#/c/618585/
[2] https://review.openstack.org/#/c/629313/
Change-Id: I86b1f9a8f17c273cf990189b2ffb07d60e3814b9
Updates to use new Shipyard pod configurations, removes node port use.
Requires Shipyard commit a11e962eef or
newer.
Change-Id: Iff5af45d6b4f60c34d18aad821cf9afa4ea67dda
This change updates the following components:
Kubernetes 1.10.11 -> 1.11.6
CoreDNS 1.1.2 -> 1.1.3 (per k8s 1.11 recommendations)
Etcd 3.2.14 -> 3.2.18 (per k8s 1.11 recommendations)
Tiller 2.10.0 -> 2.12.1 (adds support for k8s 1.11, thread safety fix)
Armada as of 2019-02-4 (adds support for Tiller 2.12.1)
Also fixes tiller upgradability.
Change-Id: I2375b0ae167593815c56470ba6a6c7b529375302
This parameter has been deprecated in Newton and removed [1] in Ocata.
[1] https://review.openstack.org/#/c/385604/
Change-Id: I4e0130fea0375754cebb4a22d2248346f313fe6d
This updates the configuration for the fluent-logging chart to
include inputs for libvirt and qemu, as well as updates the output
configurations to include the appropriate buffer configuration
overrides
Change-Id: Id908ea875b07004202795dac68df7e9727ae9771
* prometheus - change `prometheus` subpath to `monitoring`
* grafana - path to prometheus credentials should be `user`
instead of `admin`
Change-Id: Iee014ce3ff4ee2ebb534003ce3f18ab8bcd63b9d
Adding paths, rerun_interval and rerun_policy to existing
divingbell_perm overrides
Uplift divingbell to latest version
Change-Id: I117f0ee7af92a7f139e2766ec435fc1f3f718e62
Transposed characters in the target replacements in
some of the deployment files can lead to unexpected
results (mostly that defaults are used instead of
overrides)
Since defaults were being used before, the endpoint definition needed to
be redefined to use the expected scheme (amqp) and path (/airflow)
Change-Id: I85a58c7b525e29208957845bf25ffbb0111c8f35
* Drydock: typo for user path `drydock.user` -> `auth.drydock`.
* Drydock: add an override for admin user.
* Shipyard: add an override for "shipyard" user.
Change-Id: I0e1f99db816ccf41085cca24637db40e0641a7b6
Kaspars Skels
Evgeny L
Dimitrios Markou
James Gu
Drew Walters
Michael Beaver
Steve Wilkerson
Jared Miller
Matt McEuen
Jenkins Uplifter
Bryan Strassner
Sean Eagan
lijunjie
anthony.bellino
Chinasubbareddy M