ed3b27cc92
This commit addresses a few shortcomings in the etcd service:
* Adding or removing etcd nodes required manual intervention.
* The etcd service would have brief outages during upgrades or
reconfigures because restarts weren't always serialised.
This makes the etcd service follow a similar pattern to mariadb:
* There is now a distiction between bootstrapping the cluster
and adding / removing another member.
* This more closely follows etcd's upstream bootstrapping
guidelines.
* The etcd role now serialises restarts internally so the
kolla_serial pattern is no longer appropriate (or necessary).
This does not remove the need for manual intervention in all
failure modes: the documentation has been updated to address the
most common issues.
Note that there's repetition in the container specifications: this
is somewhat deliberate. In a future cleanup, it's intended to reduce
the duplication.
Change-Id: I39829ba0c5894f8e549f9b83b416e6db4fafd96f
63 lines
2.6 KiB
YAML
63 lines
2.6 KiB
YAML
---
|
|
etcd_services:
|
|
etcd:
|
|
container_name: etcd
|
|
group: etcd
|
|
enabled: true
|
|
environment:
|
|
# KOLLA_BOOTSTRAP_STATUS is used to indicate whether the container should
|
|
# be recreated. Otherwise the kolla_container task doesn't detect that the
|
|
# environment has changed if variables are removed.
|
|
KOLLA_BOOTSTRAP_STATUS: "bootstrap completed"
|
|
ETCDCTL_API: "3"
|
|
ETCDCTL_ENDPOINTS: "{{ etcd_client_internal_endpoint }}"
|
|
ETCDCTL_WRITE_OUT: "json"
|
|
ETCD_DATA_DIR: "/var/lib/etcd"
|
|
ETCD_NAME: "{{ ansible_facts.hostname }}"
|
|
ETCD_ADVERTISE_CLIENT_URLS: "{{ etcd_client_internal_endpoint }}"
|
|
ETCD_LISTEN_CLIENT_URLS: "{{ etcd_client_internal_endpoint }}"
|
|
ETCD_LISTEN_PEER_URLS: "{{ etcd_peer_internal_endpoint }}"
|
|
ETCD_OUT_FILE: "/var/log/kolla/etcd/etcd.log"
|
|
KOLLA_CONFIG_STRATEGY: "{{ config_strategy }}"
|
|
ETCD_CERT_FILE: "{% if etcd_enable_tls | bool %}/etc/etcd/certs/etcd-cert.pem{% endif %}"
|
|
ETCD_KEY_FILE: "{% if etcd_enable_tls | bool %}/etc/etcd/certs/etcd-key.pem{% endif %}"
|
|
ETCD_PEER_CERT_FILE: "{% if etcd_enable_tls | bool %}/etc/etcd/certs/etcd-cert.pem{% endif %}"
|
|
ETCD_PEER_KEY_FILE: "{% if etcd_enable_tls | bool %}/etc/etcd/certs/etcd-key.pem{% endif %}"
|
|
image: "{{ etcd_image_full }}"
|
|
volumes: "{{ etcd_default_volumes + etcd_extra_volumes }}"
|
|
dimensions: "{{ etcd_dimensions }}"
|
|
haproxy:
|
|
etcd:
|
|
enabled: true
|
|
mode: "http"
|
|
external: false
|
|
port: "{{ etcd_client_port }}"
|
|
tls_backend: "{{ etcd_enable_tls | bool }}"
|
|
|
|
####################
|
|
# Docker
|
|
####################
|
|
etcd_image: "{{ docker_registry ~ '/' if docker_registry else '' }}{{ docker_namespace }}/etcd"
|
|
etcd_tag: "{{ openstack_tag }}"
|
|
etcd_image_full: "{{ etcd_image }}:{{ etcd_tag }}"
|
|
etcd_dimensions: "{{ default_container_dimensions }}"
|
|
|
|
etcd_default_volumes:
|
|
- "{{ node_config_directory }}/etcd/:{{ container_config_directory }}/:ro"
|
|
- "/etc/localtime:/etc/localtime:ro"
|
|
- "{{ '/etc/timezone:/etc/timezone:ro' if ansible_facts.os_family == 'Debian' else '' }}"
|
|
- "kolla_etcd:/var/lib/etcd/"
|
|
- "kolla_logs:/var/log/kolla/"
|
|
etcd_extra_volumes: "{{ default_extra_volumes }}"
|
|
|
|
############
|
|
# Endpoints
|
|
############
|
|
etcd_client_internal_endpoint: "{{ etcd_protocol }}://{{ api_interface_address | put_address_in_context('url') }}:{{ etcd_client_port }}"
|
|
etcd_peer_internal_endpoint: "{{ etcd_protocol }}://{{ api_interface_address | put_address_in_context('url') }}:{{ etcd_peer_port }}"
|
|
|
|
###################
|
|
# Managing members
|
|
###################
|
|
etcd_remove_deleted_members: "no"
|