Currently in the upgrade job we are seeing the OOM killer kick in during
the 'overcloud service configuration save' command. Ansible is quite
inefficient when copying large files around, so excluding the large IPA
images should relieve some memory pressure.
Change-Id: I3a230b0a699154606ca8faa00a85d45ae815c599
Story: 2004704
Task: 28733
The yatesr.timezone role has been forked to stackhpc.timezone, since the
upstream role includes symlinks which do not play nicely with PBR. Once
the PBR issue is fixed, we can revert to using the upstream role.
Change-Id: Ib8fe11cdf7e2571f99eb13c0e5ebd3e200c77c6e
Story: 2004252
Task: 27787
When using Ansible OpenStack modules, if OS_CACERT is defined, then this
will be passed as the cacert module argument.
This ensures that non-standard CA certificate paths can be used.
Change-Id: I2a2575b1fb0f149cc13c44526fc0167e68e07aab
Story: 2004911
Task: 29261
Now uses the value of 'docker_registry', the default of which is
unset.
Change-Id: I564defbc661b6c100e9773826c03e3bc960adea7
Story: 2004873
Task: 29135
Update libvirt-host to 1.3.0
Update libvirt-vm to 1.6.0
These bring in support for non-hardware accelerated VMs, amongst other
things.
Change-Id: I46a0a63092321ce8ec271563fe259a66fa0e2a7b
Due to an Ansible bug, kayobe fails to provision a seed VM using Ansible
2.6. Accessing hostvars via an intermediate variable causes Ansible not
to template the variable.
Work around the issue until it's fixed upstream in Ansible.
Change-Id: I41771671779b8e624c87b5234cf36d9e791db0cc
Story: 2004759
Task: 28868
This commit changes the docker-registry playbook to deploy a Docker
Registry on hosts in the docker-registry group, rather than being
harcoded to deploy on the first controller.
The default location is changed to deploy on the seed as it appears to
be a good location for most deployments.
UpgradeImpact: The Docker Registry is now deployed on the seed by
default.
Change-Id: I87d02bd9556afb795c8783ed78e797fdd31fe8ca
Story: 2004820
Task: 28986
This variable can be used to customize the CA certificate file used as
the OS_CACERT environment variable in openrc files when TLS is enabled.
Change-Id: Ia157e91dfab176b84a53354065172cac2d60fb78
Story: 2004876
Task: 29150
This role now expects disks to be passed as a list instead of a
comma-separated string.
This commit updates group variables to stop transforming disk lists to
comma-separated strings and adds a check for users overriding LVM
variables. The playbook is also tagged as upgrade-check.
Change-Id: Ia8001c28a8be034ae79a1c584beb40bc66891db3
Bifrost does not perform ironic online data migrations after upgrading. This
can lead to the following error during kayobe seed service upgrade:
The database is not compatible with this release of ironic (10.1.7). Please run
"ironic-dbsync online_data_migrations" using the previous release.
As a workaround, perform the migrations in kayobe, prior to performing the
upgrade.
Change-Id: I8951242ba40158c26e85377254d19085d85cf753
Story: 2004308
Task: 28657
Adds a new command to upgrade containerised services on the seed:
kayobe seed service upgrade
This is largely the same as the deploy command, since there is no
kolla-ansible bifrost-upgrade command yet.
A limitation in Bifrost requires us to remove IPA images before
upgrading the bifrost container.
Change-Id: Ibbe01e972487e69dbb753a67efcf13e3ae0800de
Story: 2004308
Task: 27872
Changes to the openstack ansible modules and client SDKs have rendered our
authentication for ironic invalid. Bifrost now provides a working clouds.yaml,
so use this instead of the fudged endpoint/token setup in env-vars.
Also updates some use of the ironic client to the openstack client, and adds
support for the new 'inspect wait' ironic state to avoid surprises during
inspection.
Change-Id: I15ea388b6df8ced9cc0e0eceed8dec8aa8f57a9b
Story: 2001864
Task: 28078
Kayobe writes out several host variables to the Kolla ansible inventory
files, etc/kolla/inventory/seed and etc/kolla/inventory/overcloud. These
include ansible_host, and network interfaces such as api_interface,
ironic_dnsmasq_interface, etc.
In Ansible, these should have a higher precedence than the kolla ansible
group variables in ansible/group_vars/all.yml that set the defaults.
However, in Ansible 2.4+, if the host has the same name as a group that
it is in, the group variables now take precedence, meaning that it is
not possible to override them.
This was observed when using the kayobe-config-dev repo for testing,
where the seed host is in the seed group.
Admittedly ansible does tell you not to do this: [WARNING]:
Found both group and host with same name: localhost
The solution used here is to use a separate host_vars file for each
host. Alternatively we could enforce that hostnames and groups do not
overlap.
Change-Id: I349c8279d85a591689ac8108bce14d96889440fe
Story: 2004418
Task: 28065
The dell_switch_delegate_to parameter was removed from the dell-switch
role in commit da75d6b734fa0451738993d4d6c9beab9b4640b2.
Change-Id: Ia70d48d417d68140ea9e3abd1409c6b0945e638c
The dellos Ansible modules do not accept a `transport` key in the
provider parameter anymore, even in Ansible 2.4.0.
Change-Id: I4bdaa337cb9c6cb93f36338a191a9aa78e2c13f0
Story: 2004588
Task: 28464
If a public FQDN is defined, use it instead of the virtual IP address.
When using TLS, certificates are generally tied to a hostname rather
than to an IP address.
Change-Id: I0afef32a0f4030bba613febdf266e2ccd863512d
The Juniper device support allows ansible_host variable to not be set
for a switch, in which case the inventory_hostname will be used instead.
This change applies this default consistently across all switch types.
Change-Id: Ibc1e673a6b988f2e8d7bb6c62d30ccdb7ce96351
Story: 2004358
Task: 27958