Do not provision neutron config when not needed

With [1] we merged not installing neutron venv and packages
when it's not required, for example on ovn_northd. At the same
time we still try to provision config files that are not needed there.
Moreover, role is failing as smart_sources bits are relying on neutron venv


Change-Id: I59050f09577df790119e552e39cd38463755b36f
This commit is contained in:
Dmitriy Rabotyagov 2022-12-09 10:11:00 +01:00 committed by Dmitriy Rabotyagov
parent fa974be047
commit 3faa793469

View File

@ -13,146 +13,149 @@
# See the License for the specific language governing permissions and # See the License for the specific language governing permissions and
# limitations under the License. # limitations under the License.
- name: Create plugins neutron dir - name: Preparing neutron config
path: "{{ item.path | default(omit) }}"
state: "directory"
owner: "{{ item.owner|default(neutron_system_user_name) }}"
group: "{{|default(neutron_system_group_name) }}"
mode: "{{ item.mode | default(omit) }}"
- path: "{{ neutron_conf_version_dir }}/plugins"
mode: "0750"
- path: "{{ neutron_conf_version_dir }}/plugins/{{ neutron_plugin_type.split('.')[0] }}"
mode: "0750"
- path: "{{ neutron_conf_version_dir }}/rootwrap.d"
owner: "root"
group: "root"
# NOTE(cloudnull): This task is required to copy rootwrap filters that we need
# and neutron does not provide by default.
- name: Copy extra neutron rootwrap filters
src: "{{ item }}"
dest: "{{ neutron_conf_version_dir }}/rootwrap.d/"
owner: "root"
group: "root"
- rootwrap.d/*
- Restart neutron services
- Restart uwsgi services
- name: Copy common neutron config
src: "{{ item.src }}"
dest: "{{ item.dest }}"
owner: "root"
group: "{{|default(neutron_system_group_name) }}"
mode: "0640"
config_overrides: "{{ item.config_overrides }}"
config_type: "{{ item.config_type }}"
- src: "neutron.conf.j2"
dest: "{{ neutron_conf_version_dir }}/neutron.conf"
config_overrides: "{{ neutron_neutron_conf_overrides }}"
config_type: "ini"
- src: "{{ neutron_plugins[neutron_plugin_type].plugin_ini }}.j2"
dest: "{{ neutron_conf_version_dir }}/{{ neutron_plugins[neutron_plugin_type].plugin_ini }}"
config_overrides: "{{ neutron_plugins[neutron_plugin_type].plugin_conf_ini_overrides }}"
config_type: "ini"
- Restart neutron services
- Restart uwsgi services
- name: Implement policy.yaml if there are overrides configured
content: "{{ neutron_policy_overrides }}"
dest: "{{ neutron_conf_version_dir }}/policy.yaml"
owner: "root"
group: "{{ neutron_system_group_name }}"
mode: "0640"
config_type: yaml
when: when:
- neutron_policy_overrides | length > 0
- neutron-policy-overrides
- name: Remove legacy policy.yaml file
path: "{{ neutron_conf_dir }}/policy.yaml"
state: absent
- neutron_policy_overrides | length == 0
- neutron-policy-override
- name: Create symlink to neutron-keepalived-state-change
src: "{{ neutron_bin }}/neutron-keepalived-state-change"
dest: "/usr/local/bin/neutron-keepalived-state-change"
state: link
- neutron_install_method == 'source'
- ((filtered_neutron_services|length) + (uwsgi_neutron_services|length)) > 0 - ((filtered_neutron_services|length) + (uwsgi_neutron_services|length)) > 0
- name: Create plugins neutron dir
path: "{{ item.path | default(omit) }}"
state: "directory"
owner: "{{ item.owner|default(neutron_system_user_name) }}"
group: "{{|default(neutron_system_group_name) }}"
mode: "{{ item.mode | default(omit) }}"
- path: "{{ neutron_conf_version_dir }}/plugins"
mode: "0750"
- path: "{{ neutron_conf_version_dir }}/plugins/{{ neutron_plugin_type.split('.')[0] }}"
mode: "0750"
- path: "{{ neutron_conf_version_dir }}/rootwrap.d"
owner: "root"
group: "root"
- name: Preserve original configuration file(s) # NOTE(cloudnull): This task is required to copy rootwrap filters that we need
command: "cp {{ item.target_f }} {{ item.target_f }}.original" # and neutron does not provide by default.
args: - name: Copy extra neutron rootwrap filters
creates: "{{ item.target_f }}.original" copy:
with_items: "{{ neutron_core_files }}" src: "{{ item }}"
dest: "{{ neutron_conf_version_dir }}/rootwrap.d/"
owner: "root"
group: "root"
- rootwrap.d/*
- Restart neutron services
- Restart uwsgi services
- name: Fetch override files - name: Copy common neutron config
fetch: openstack.config_template.config_template:
src: "{{ item.target_f }}.original" src: "{{ item.src }}"
dest: "{{ item.tmp_f }}" dest: "{{ item.dest }}"
flat: yes owner: "root"
changed_when: false group: "{{|default(neutron_system_group_name) }}"
with_items: "{{ neutron_core_files }}" mode: "0640"
run_once: true config_overrides: "{{ item.config_overrides }}"
config_type: "{{ item.config_type }}"
- src: "neutron.conf.j2"
dest: "{{ neutron_conf_version_dir }}/neutron.conf"
config_overrides: "{{ neutron_neutron_conf_overrides }}"
config_type: "ini"
- src: "{{ neutron_plugins[neutron_plugin_type].plugin_ini }}.j2"
dest: "{{ neutron_conf_version_dir }}/{{ neutron_plugins[neutron_plugin_type].plugin_ini }}"
config_overrides: "{{ neutron_plugins[neutron_plugin_type].plugin_conf_ini_overrides }}"
config_type: "ini"
- Restart neutron services
- Restart uwsgi services
- name: Copy common neutron config - name: Implement policy.yaml if there are overrides configured
openstack.config_template.config_template: openstack.config_template.config_template:
src: "{{ item.tmp_f }}" content: "{{ neutron_policy_overrides }}"
dest: "{{ item.target_f }}" dest: "{{ neutron_conf_version_dir }}/policy.yaml"
owner: "{{ item.owner | default('root') }}" owner: "root"
group: "{{ | default(neutron_system_group_name) }}" group: "{{ neutron_system_group_name }}"
mode: "{{ item.mode | default('0640') }}" mode: "0640"
config_overrides: "{{ item.config_overrides }}" config_type: yaml
config_type: "{{ item.config_type }}" when:
with_items: "{{ neutron_core_files }}" - neutron_policy_overrides | length > 0
notify: tags:
- Restart neutron services - neutron-policy-overrides
- Restart uwsgi services
- name: Cleanup fetched temp files - name: Remove legacy policy.yaml file
file: file:
path: "{{ item.tmp_f }}" path: "{{ neutron_conf_dir }}/policy.yaml"
state: absent state: absent
changed_when: false when:
delegate_to: localhost - neutron_policy_overrides | length == 0
check_mode: false tags:
with_items: "{{ neutron_core_files }}" - neutron-policy-override
# NOTE(cloudnull): This will ensure strong permissions on all rootwrap files. - name: Create symlink to neutron-keepalived-state-change
- name: Set rootwrap.d permissions file:
file: src: "{{ neutron_bin }}/neutron-keepalived-state-change"
path: "{{ neutron_conf_version_dir }}/rootwrap.d" dest: "/usr/local/bin/neutron-keepalived-state-change"
owner: "root" state: link
group: "root" when:
mode: "0640" - neutron_install_method == 'source'
recurse: true
- name: Copy neutron ml2 plugin config - name: Preserve original configuration file(s)
openstack.config_template.config_template: command: "cp {{ item.target_f }} {{ item.target_f }}.original"
src: "{{ ('plugin_conf_bare' not in neutron_plugins[item]) | ternary(neutron_plugins[item].plugin_ini ~ '.j2', omit) }}" args:
dest: "{{ neutron_conf_version_dir }}/{{ neutron_plugins[item].plugin_ini }}" creates: "{{ item.target_f }}.original"
owner: "root" with_items: "{{ neutron_core_files }}"
group: "{{ neutron_system_group_name }}"
mode: "0640" - name: Fetch override files
config_overrides: "{{ neutron_plugins[item].plugin_conf_ini_overrides }}" fetch:
config_type: "ini" src: "{{ item.target_f }}.original"
with_items: "{{ neutron_plugin_types }}" dest: "{{ item.tmp_f }}"
flat: yes
changed_when: false
with_items: "{{ neutron_core_files }}"
run_once: true
- name: Copy common neutron config
src: "{{ item.tmp_f }}"
dest: "{{ item.target_f }}"
owner: "{{ item.owner | default('root') }}"
group: "{{ | default(neutron_system_group_name) }}"
mode: "{{ item.mode | default('0640') }}"
config_overrides: "{{ item.config_overrides }}"
config_type: "{{ item.config_type }}"
with_items: "{{ neutron_core_files }}"
- Restart neutron services
- Restart uwsgi services
- name: Cleanup fetched temp files
path: "{{ item.tmp_f }}"
state: absent
changed_when: false
delegate_to: localhost
check_mode: false
with_items: "{{ neutron_core_files }}"
# NOTE(cloudnull): This will ensure strong permissions on all rootwrap files.
- name: Set rootwrap.d permissions
path: "{{ neutron_conf_version_dir }}/rootwrap.d"
owner: "root"
group: "root"
mode: "0640"
recurse: true
- name: Copy neutron ml2 plugin config
src: "{{ ('plugin_conf_bare' not in neutron_plugins[item]) | ternary(neutron_plugins[item].plugin_ini ~ '.j2', omit) }}"
dest: "{{ neutron_conf_version_dir }}/{{ neutron_plugins[item].plugin_ini }}"
owner: "root"
group: "{{ neutron_system_group_name }}"
mode: "0640"
config_overrides: "{{ neutron_plugins[item].plugin_conf_ini_overrides }}"
config_type: "ini"
with_items: "{{ neutron_plugin_types }}"
- name: Generate neutron dnsmasq Config - name: Generate neutron dnsmasq Config
template: template: