141 lines
4.5 KiB
Raw Normal View History

# Copyright (C) 2014 OpenStack Fondation
# Author: Emilien Macchi <emilien.macchi@enovance.com>
# Donald Talton <dotalton@cisco.com>
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# http://www.apache.org/licenses/LICENSE-2.0
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
# == Class: nova::compute::rbd
# Configure nova-compute to store virtual machines on RBD
# === Parameters
# [*libvirt_images_rbd_pool*]
# (optional) The RADOS pool in which rbd volumes are stored.
# Defaults to 'rbd'.
# [*libvirt_images_rbd_ceph_conf*]
# (optional) The path to the ceph configuration file to use.
# Defaults to '/etc/ceph/ceph.conf'.
# [*libvirt_rbd_user*]
# (Required) The RADOS client name for accessing rbd volumes.
# [*libvirt_rbd_secret_uuid*]
# (optional) The libvirt uuid of the secret for the rbd_user.
# Required to use cephx.
# Default to false.
# [*libvirt_rbd_secret_key*]
# (optional) The cephx key to use as key for the libvirt secret,
# it must be base64 encoded; when not provided this key will be
# requested to the ceph cluster, which assumes the node is
# provided of the client.admin keyring as well.
# Default to undef.
# [*rbd_keyring*]
# (optional) The keyring name to use when retrieving the RBD secret
# Default to 'client.nova'
# [*ephemeral_storage*]
# (optional) Wether or not to use the rbd driver for the nova
# ephemeral storage or for the cinder volumes only.
# Defaults to true.
# [*manage_ceph_client*]
# (optional) Whether to manage the ceph client package.
# Defaults to true.
# [*ceph_client_ensure*]
# (optional) Ensure value for ceph client package.
# Defaults to 'present'.
class nova::compute::rbd (
$libvirt_rbd_secret_uuid = false,
$libvirt_rbd_secret_key = undef,
$libvirt_images_rbd_pool = 'rbd',
$libvirt_images_rbd_ceph_conf = '/etc/ceph/ceph.conf',
$rbd_keyring = 'client.nova',
$ephemeral_storage = true,
$manage_ceph_client = true,
$ceph_client_ensure = 'present',
) {
include ::nova::deps
include ::nova::params
if $manage_ceph_client {
# Install ceph client libraries
package { 'ceph-client-package':
ensure => $ceph_client_ensure,
name => $nova::params::ceph_client_package_name,
tag => ['openstack'],
nova_config {
'libvirt/rbd_user': value => $libvirt_rbd_user;
if $libvirt_rbd_secret_uuid {
nova_config {
'libvirt/rbd_secret_uuid': value => $libvirt_rbd_secret_uuid;
file { '/etc/nova/secret.xml':
content => template('nova/secret.xml-compute.erb'),
require => Anchor['nova::config::begin'],
Removing WARNING: line has more than 140 characters in puppet-nova profiles Some lint checks are returning: WARNING: line has more than 140 characters This patch will remove those warnings by adding \'s or reducing variables names Change in favor of using latest version of puppet-lint 2016-09-09 15:01:33.093779 | manifests/api.pp:415:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093857 | manifests/api.pp:513:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093882 | manifests/compute.pp:188:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093904 | manifests/compute.pp:192:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093924 | manifests/compute.pp:196:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093945 | manifests/compute.pp:204:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093966 | manifests/compute/rbd.pp:104:WARNING: line has more than 140 characters 2016-09-09 15:01:33.093986 | manifests/init.pp:598:WARNING: line has more than 140 characters 2016-09-09 15:01:33.094008 | manifests/keystone/auth.pp:114:WARNING: line has more than 140 characters 2016-09-09 15:01:33.094030 | manifests/keystone/auth.pp:115:WARNING: line has more than 140 characters 2016-09-09 15:01:33.094050 | manifests/network.pp:205:WARNING: line has more than 140 characters 2016-09-09 15:01:33.094071 | manifests/params.pp:136:WARNING: line has more than 140 characters Change-Id: I61a4e50f8ed72907c831ea158056061e1e61aa82
2016-08-15 12:46:49 +02:00
#Variable name shrinked in favor of removing
#the more than 140 chars puppet-lint warning.
#variable used in the get-or-set virsh secret
$cm = '/usr/bin/virsh secret-define --file /etc/nova/secret.xml | /usr/bin/awk \'{print $2}\' | sed \'/^$/d\' > /etc/nova/virsh.secret'
exec { 'get-or-set virsh secret':
command => $cm,
unless => "/usr/bin/virsh secret-list | grep -i ${libvirt_rbd_secret_uuid}",
require => [File['/etc/nova/secret.xml'], Service['libvirt']],
if $libvirt_rbd_secret_key {
$libvirt_key = $libvirt_rbd_secret_key
} else {
$libvirt_key = "$(ceph auth get-key ${rbd_keyring})"
exec { 'set-secret-value virsh':
command => "/usr/bin/virsh secret-set-value --secret ${libvirt_rbd_secret_uuid} --base64 ${libvirt_key}",
unless => "/usr/bin/virsh secret-get-value ${libvirt_rbd_secret_uuid} | grep ${libvirt_key}",
require => Exec['get-or-set virsh secret'],
before => Anchor['nova::config::end'],
if $ephemeral_storage {
nova_config {
'libvirt/images_type': value => 'rbd';
'libvirt/images_rbd_pool': value => $libvirt_images_rbd_pool;
'libvirt/images_rbd_ceph_conf': value => $libvirt_images_rbd_ceph_conf;
} else {
nova_config {
'libvirt/images_rbd_pool': ensure => absent;
'libvirt/images_rbd_ceph_conf': ensure => absent;