--- # Copyright 2014, Rackspace US, Inc. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. - name: Synchronize the nova API DB schema command: "{{ nova_bin }}/nova-manage api_db sync" become: yes become_user: "{{ nova_system_user_name }}" changed_when: false # We need to check for existance of the cell, since nova-manage cell_v2 create_cell # might be not idempotent due to the bug https://bugs.launchpad.net/nova/+bug/1923899 - name: Get UUID of Nova Cells command: "{{ nova_bin }}/nova-manage cell_v2 list_cells" become: yes become_user: "{{ nova_system_user_name }}" changed_when: false register: _cell_list - name: Set cell facts set_fact: _cell0_record: '{{ _cell_list.stdout_lines | select("regex", "[0-]{36}") }}' _cell1_record: '{{ _cell_list.stdout_lines | select("regex", " " ~ nova_cell1_name ~ " ") }}' # This is idempotent and therefore safe for greenfield # and brownfield installations. # Though since we anyway need to fetch cell records - let's run # it conditionally. - name: Create the cell0 mapping entry in the nova API DB command: >- {{ nova_bin }}/nova-manage cell_v2 map_cell0 --database_connection mysql+pymysql://{{ nova_api_galera_user }}:{{ nova_api_container_mysql_password }}@{{ nova_api_galera_address }}/{{ nova_cell0_database }}?charset=utf8{% if nova_galera_use_ssl | bool %}&ssl_verify_cert=true{% if nova_galera_ssl_ca_cert | length > 0 %}&ssl_ca={{ nova_galera_ssl_ca_cert }}{% endif %}{% endif %} become: yes become_user: "{{ nova_system_user_name }}" changed_when: false when: - not _cell0_record - name: Update the cell0 mapping entry in the nova API DB command: >- {{ nova_bin }}/nova-manage cell_v2 update_cell --cell_uuid 00000000-0000-0000-0000-000000000000 --database_connection mysql+pymysql://{{ nova_api_galera_user }}:{{ nova_api_container_mysql_password }}@{{ nova_api_galera_address }}/{{ nova_cell0_database }}?charset=utf8{% if nova_galera_use_ssl | bool %}&ssl_verify_cert=true{% if nova_galera_ssl_ca_cert | length > 0 %}&ssl_ca={{ nova_galera_ssl_ca_cert }}{% endif %}{% endif %} --transport-url 'none:/' become: yes become_user: "{{ nova_system_user_name }}" changed_when: false when: - _cell0_record | length > 0 - nova_cell_force_update or ('ssl_verify_cert' not in _cell0_record[0] and nova_galera_use_ssl) or ('ssl_verify_cert' in _cell0_record[0] and not nova_galera_use_ssl) - name: Synchronize the nova DB schema command: "{{ nova_bin }}/nova-manage db sync" become: yes become_user: "{{ nova_system_user_name }}" changed_when: false - name: Create the cell1 mapping entry in the nova API DB command: >- {{ nova_bin }}/nova-manage cell_v2 create_cell --name {{ nova_cell1_name }} --database_connection {scheme}://{username}:{password}@{hostname}:{port}/{path}?{query} --transport-url {scheme}://{username}:{password}@{hostname}:{port}/{{ ( not nova_oslomsg_rabbit_quorum_queues | bool) | ternary('/{path}', '{path}') }}?{query} become: yes become_user: "{{ nova_system_user_name }}" register: nova_cell1_create # When upgrading, cell1 will already exist and nova-manage will # give a return code of 2, so we therefore know that if the # return code is: # 0: the cell mapping record in the nova API database was # successfully implemented (greenfield install) # 2: the cell mapping record in the nova API database already # exists (brownfield install). This is not working for templates # because of the bug https://bugs.launchpad.net/nova/+bug/1923899 failed_when: "nova_cell1_create.rc not in [0, 2]" changed_when: "nova_cell1_create.rc == 0" when: - not _cell1_record - name: "Change the template for cell {{ nova_cell1_name }}" command: >- {{ nova_bin }}/nova-manage cell_v2 update_cell --cell_uuid {{ _cell1_record[0].split()[3] }} --database_connection {scheme}://{username}:{password}@{hostname}:{port}/{path}?{query} --transport-url {scheme}://{username}:{password}@{hostname}:{port}/{{ ( not nova_oslomsg_rabbit_quorum_queues | bool) | ternary('/{path}', '{path}') }}?{query} become: yes become_user: "{{ nova_system_user_name }}" changed_when: false when: - _cell1_record | length > 0 - nova_cell_force_update or (nova_oslomsg_rpc_port ~ '/' ~ _nova_oslomsg_rpc_vhost_conf) not in _cell1_record[0] # The nova-status upgrade check command is typically run after upgrading the # controller services to new code, but is also OK to run for a greenfield # install to verify everything is setup correctly. This must run after cell # mapping setup and before actual service restart. # https://docs.openstack.org/nova/latest/cli/nova-status.html - name: Run nova-status upgrade check to validate a healthy configuration command: "{{ nova_bin }}/nova-status upgrade check" become: yes become_user: "{{ nova_system_user_name }}" register: nova_status_upgrade_check until: nova_status_upgrade_check is success retries: 8 delay: 15 # The nova-status upgrade check command has three standard return codes: # 0: all checks were successful # 1: warning: there might be some checks that require investigation, but # generally will not block an automated install/upgrade; digging into # warnings is useful for debugging post-install/upgrade issues # 2: at least one check failed and must stop the install/upgrade because # something was not setup properly failed_when: "nova_status_upgrade_check.rc not in [0, 1]" changed_when: false when: - "ansible_local['openstack_ansible']['nova']['need_online_data_migrations'] | bool"