2481 Commits

Author SHA1 Message Date
Emilien Macchi
bfbe25b312 Deprecate Keepalived
Keepalived is deprecated in Ussuri and will be removed in the next cycle.

blueprint replace-keepalived-undercloud
Change-Id: I8b72e35e5ea4bb5c7a8ff60792d96236fa8b3554
(cherry picked from commit 57d04446f3ab2a1ee259e67dceb219e2c6a8105d)
2020-05-29 13:18:10 +00:00
rajinir
a9831936f5 Deprecating ScaleIO Volume Config
A new Dell EMC VxFlexOS  config is added with
new parameters. Use that instead.
See https://review.opendev.org/#/c/728720/

Change-Id: I9a820e4ed83a3e22fafa8e0cfe2153fd33f09090
(cherry picked from commit 6a27375c2a14b8fc821ba6b65abd503d81da5752)
2020-05-28 02:29:08 +00:00
Zuul
d1c608381b Merge "Allow the Mistral tunnel timeout to be configurable." into stable/ussuri 2020-05-27 20:20:42 +00:00
Zuul
9a0037b803 Merge "Fix ipv6 addrlabel for ceph-nfs" into stable/ussuri 2020-05-27 15:01:04 +00:00
Zuul
1693cff347 Merge "Include vendordata in nova-api and nova-metadata-api" into stable/ussuri 2020-05-27 14:54:21 +00:00
Zuul
13662d55f0 Merge "Allow OCF resources to be created with --force" into stable/ussuri 2020-05-27 14:46:07 +00:00
Michele Baldessari
7c9cd6e620 Only run the VIP creation code when enable_load_balancer is set to true
When we use an external loadbalancer we do not want neither haproxy nor
VIPs on our control plane, since they will be managed externally.

So a user will usually include something like the following template:
/usr/share/openstack-tripleo-heat-templates/environments/external-loadbalancer-vip.yaml
or implement a similar set of parameters/resource mapping.
The main needed params are: EnableLoadBalancer set to false, the
noop-ing of the haproxy service via 'OS::TripleO::Services::HAproxy: OS::Heat::None'
and the hard-coding of the external VIPs via the *VirtualFixedIPs
parameters.

To make sure we do not create the OVNDbs VIP we will use
the listen_on_master_ip_only as the variable to
determine if an external loadbalancer is used:
- no -> external LB used
- yes -> pcmk+haproxy i.e. our own loadbalancer

We cannot use the enable_load_balancer hiera key that is normally
set by haproxy, because the haproxy service will be nooped.

Related-Bug: #1864409

Change-Id: Ie313c0410ed684661aeea77158572035ddfcfcd5
(cherry picked from commit 50c5e1e6a52798ecebd35c3a1892573ec454061b)
2020-05-27 02:59:34 +00:00
Michele Baldessari
844975ef4b Allow OCF resources to be created with --force
While moving to running pcs commands on the host and off short-lived
containers, we are confronted with the issue that pcs usually checks
for the resource agent's existence on the host before creating it.
Since we'd rather avoid installing the needed resource agents on the
host (as it is inside a container), we allow a new 'force_ocf' parameter
to be passed to those situations where we might need it.

Depends-On: I20eb78a061a334b20f6b2274591c5d313a0af532

Related-Bug: #1863442
Change-Id: If9048196b5c03e3cfaba72f043b7f7275568bdc4
(cherry picked from commit d185cbf032e02eec7f051e85c51c19732620e192)
2020-05-27 02:59:23 +00:00
Takashi Kajinami
c6456e381e Include vendordata in nova-api and nova-metadata-api
Since the removal of deprecated vendordata parameters in each classes
in puppet-nova[1], we should explicitly include nova::vendordata class
in nova-api and nova-metadata-api so that required parameters are set
in controller nodes.

[1] 296b106916

Closes-Bug: #1879418
Change-Id: I62d21ea910a976b1ba36b3c9a943d3547b40b7fc
(cherry picked from commit 5df2066a87f53976c309c2204e952a121872ba9d)
2020-05-27 02:59:15 +00:00
Michele Baldessari
b2ffbe7f5b Fix ipv6 addrlabel for ceph-nfs
No need to comment it out and we can keep it in sync like with the other
VIPs we create:
https://github.com/openstack/puppet-tripleo/blob/master/manifests/pacemaker/haproxy_with_vip.pp#L78
https://github.com/openstack/puppet-tripleo/blob/master/manifests/profile/pacemaker/ovn_dbs_bundle.pp#L305

Change-Id: I680f6c0e7b8369b939a1c90c01a72edbb8e460f9
(cherry picked from commit 91f366c5f6881856f70bb7c8bed5c59c973bc8b2)
2020-05-27 02:59:05 +00:00
Luke Short
ec4e58927f Allow the Mistral tunnel timeout to be configurable.
Change-Id: Ibfd5587476d5a411206f62e8b4b886db662bf7d1
Related-Bug:  #1872823
Signed-off-by: Luke Short <ekultails@gmail.com>
(cherry picked from commit 5c3e736e409e661b7e1db51749719eafb86f2f9a)
2020-05-27 02:46:26 +00:00
Zuul
99c3e515fb Merge "Stop using deprecated function mysql_password" 2020-05-13 15:13:02 +00:00
Damien Ciabrini
b382becab1 Stop using deprecated function mysql_password
Function mysql_password is deprecated and has been removed
in recent puppetlabs-mysql [1]. It has been replaced with
the equivalent, namespaced function mysql::password. Use it
instead.

[1] 5a70627674

Change-Id: I405a986f78f865d89b54dffea17e84d75c068ed7
Closes-Bug: #1878153
2020-05-12 22:59:11 +02:00
Zuul
d087fd6a94 Merge "Remove EC2 API" 2020-05-12 20:09:39 +00:00
rajinir
d9cae95f0a Powermax Config Fixes
Fixing the issues with Powermax config
and unit tests

Change-Id: Idf5c2f3a9f00833baee4299b8147427938a28df9
2020-05-11 10:45:56 -05:00
Zuul
ca3ce73676 Merge "Support for Dell EMC XtremIO Volume Config" 2020-05-09 05:36:28 +00:00
Zuul
1e3910a361 Merge "Deprecating Old Dell SC Volume Config" 2020-05-07 02:07:40 +00:00
Takashi Kajinami
1854f9a641 Remove EC2 API
... because support for EC2 API was alreday removed from
tripleo-heat-templates[1].

[1] 7adb850fbc6b4544a542111c930e9169e2051ba7

Change-Id: I16ddf16a39c5f7edd9a4ddf669d0993d9aaa676b
2020-05-06 22:10:12 +09:00
Zuul
978115bc8b Merge "Accept missing memcached_node_ips" 2020-05-06 10:08:45 +00:00
Zuul
15d84c3745 Merge "Do not set cache parameter for openidc" 2020-05-06 10:08:43 +00:00
Zuul
48ffe8d0a5 Merge "Rremove manifests for ceilometer-expirer" 2020-05-06 01:08:50 +00:00
rajinir
d9bdd746dc Support for Dell EMC XtremIO Volume Config
Added support for XtremIO volume config options.
Supports both iSCSI and FC drivers.
Supports deploying multiple instances of the
cinder::backend::dellemc_xtremio backend
(e.g. one iscsi + one fc, multiple iscsi, etc.).

Change-Id: I5a02b90530057f616fb84de5b04d04865693ce2f
2020-05-04 12:15:19 -05:00
Michele Baldessari
651e353445 Use http mode for nova_novncproxy
Haproxy warns us with the following:
stderr F [WARNING] 121/195330 (7) : parsing [/etc/haproxy/haproxy.cfg:116] : HTTP log/header format not usable with proxy 'nova_novncproxy' (needs 'mode http').
stderr F [WARNING] 121/195330 (7) : config : 'http-request' rules ignored for proxy 'nova_novncproxy' as they require HTTP mode.

Let's add mode http to avoid this which is used in most other services
anyways.

Change-Id: Ib3daf19ed7318a0a04349b62ea4c821e1d87e648
2020-05-03 17:43:07 +02:00
Takashi Kajinami
e2ea1206c8 Accept missing memcached_node_ips
Currently when Memcached is disabled in the deployment, puppet-tripleo
fails because some manifests expect that memcached_node_ips is defined
in hieradata.

This patch ensures that we define the default value ([]) for
memcached_node_ips, so that puppet-tripleo doesn't fail even if
the parameter doesn't appear in heradata.

Change-Id: I6d3e32f7f8f0751bdfbd0b6f2e79c5d85e1af284
2020-05-02 15:51:17 +00:00
Zuul
7693be73da Merge "Support for Dell EMC SC Volume Config" 2020-05-01 23:02:15 +00:00
Takashi Kajinami
b7ec567884 Do not set cache parameter for openidc
... because now the parameter is defined in tht.

Depends-on: https://review.opendev.org/#/c/724870/
Change-Id: I19dc7e041a3c5afff348e897150c61f1c0d70969
2020-05-02 00:24:45 +09:00
Emilien Macchi
25cf148373 Revert "Remove neutron wrappers"
This reverts commit afe7cecb598441abc0704c868643613428ef850a.

Change-Id: I961262422206c695de79a03de2be1e53defbc41c
2020-04-30 18:47:17 +00:00
Zuul
9e51bf6b9d Merge "CephRgw healthcheck aligned with ceph-ansible" 2020-04-30 18:07:53 +00:00
rajinir
bd15ac0a1f Support for Dell EMC SC Volume Config
Added support for SC volume config options.
Supports both iSCSI and FC drivers.
Supports deploying multiple instances of the
cinder::backend::dellemc_sc backend
(e.g. one iscsi + one fc, multiple iscsi, etc.).

Change-Id: I2f441a9df5bda4e1c646b3259d233f760fd3e742
2020-04-29 21:47:51 -05:00
Zuul
b71d9cb8c4 Merge "Remove fluentd manifests" 2020-04-29 10:20:10 +00:00
Takashi Kajinami
dbbb2c9b13 Rremove manifests for ceilometer-expirer
ceilometer-expirer was alreday removed from ceilometer[1], and it is
no longer used in TripleO deployment.

[1] 9323f07f977f320882f8b536c3b54835274826fc

Change-Id: I9b4a2b38de393d050c95060cc9145efad904deca
2020-04-28 23:55:04 +09:00
Francesco Pantano
d4d03ad098
CephRgw healthcheck aligned with ceph-ansible
ceph-ansible specifies GET in the healthcheck
option and this patch just aligns the haproxy
rgw section to the ceph-ansible specs.

Change-Id: I2de78f17ebb5ff50566c4f53f3377322018525d1
2020-04-28 10:06:46 +02:00
Zuul
3760847eff Merge "Replace deprecated nova::::metadata::novajoin::api::service_password" 2020-04-28 01:45:45 +00:00
Zuul
698a164711 Merge "Remove unnecessory usage of hiera" 2020-04-27 22:42:40 +00:00
Zuul
01412c1428 Merge "Remove plumgrid support" 2020-04-27 22:19:07 +00:00
rajinir
8e074fd166 Deprecating Old Dell SC Volume Config
A new Dell SC volume config which supports both iSCSI and FC drivers
is added. Deprecating the old Dell SC config
See review https://review.opendev.org/#/c/722538/

Change-Id: I3402f71fde956ede80da0840780ad4bd227103c7
2020-04-24 15:05:17 -05:00
Takashi Kajinami
cb5d5d09c4 Replace deprecated nova::::metadata::novajoin::api::service_password
Depends-on: https://review.opendev.org/#/c/720891/
Change-Id: I50489c5e512f2b69adf2a1c09d58dc05444c083b
2020-04-23 21:23:15 +09:00
Takashi Kajinami
5f77bc71ac Remove unnecessory usage of hiera
We don't need to use hiera if the parameter is actually implemented
in the class.

Change-Id: Ia916707eaecb7a6d48f992ff2112fe8507544ee1
2020-04-21 23:30:39 +09:00
Takashi Kajinami
e3a56f6af2 Remove support for Sensu/Uchiwa
... because it was relady removed from tripleo-heat-templates.

Depends-on: https://review.opendev.org/#/c/684614/
Change-Id: I38b2f325477540e86fe98ed075ac75a0988eeec3
2020-04-21 10:54:59 +09:00
Takashi Kajinami
6c39dd7e69 Remove plumgrid support
... because it is not more supported by tripleo-heat-templates.

Depends-on: https://review.opendev.org/#/c/686847/
Change-Id: I131e9d12f2fe4471f86774e552a30bd0927a4355
2020-04-21 09:19:41 +09:00
Takashi Kajinami
2527249caf Remove fluentd manifests
We don't need these implementations anymore because fluentd support was
already removed from tripleo-heat-templates.

Depends-on: https://review.opendev.org/#/c/668851/
Change-Id: If8bca34b9893fc49f598e8c86cd45bc55848363f
2020-04-21 09:04:39 +09:00
Takashi Kajinami
a00d93e1ba Remove Panko support
... because Panko support has already been removed from
tripleo-heat-templates.

Depends-on: https://review.opendev.org/#/c/680493/
Change-Id: I3ef5c1433691dd31b619e0fdbd5ec433a181ec03
2020-04-20 11:17:55 +09:00
Zuul
e240091435 Merge "Remove remaining implementation for TripleO UI" 2020-04-18 07:54:34 +00:00
Zuul
0f8c0a5950 Merge "Hardcode openidc_cache_type parameter for keystone federation with OpenIdc" 2020-04-18 04:59:49 +00:00
Zuul
0b8a3ec980 Merge "Do not manage pv/vg for cinder iscsi backend" 2020-04-18 04:48:06 +00:00
Zuul
897cae98d2 Merge "Remove OpenDaylight support" 2020-04-18 04:48:03 +00:00
Alexey Stupnikov
da9b1a3ecb Hardcode openidc_cache_type parameter for keystone federation with OpenIdc
By default OpenIdc uses shared memory caching mode, which will
not work for multiple controller nodes. puppet-tripleo already
configured to calculate memcached servers for OpenIdc, but for
some reason doesn't set "openidc_cache_type" to "memcache", so
shm is used.

There are a number of options available for "openidc_cache_type",
but memcache is the only one that will currently work for multiple
controllers:

- shm and file are stored locally on every node;
- redis requires mod_auth_openidc to be compiled with redis
  support, but it is not generally the case.

To avoid providing illusion of freedom of choice, it would
be right to hardcode this in puppet-tripleo.

Closes-Bug: #1873239
rhbz: #1824506

Change-Id: I7cbc462b2ff99b7b0d3ff58fda1b52ccf85fc86d
2020-04-16 12:26:42 +02:00
Michele Baldessari
06c4aa7446 Log stdout of HA containers
When podman dropped the journald log-driver we rushed to move to the supported
k8s-file driver. This had the side effect of us losing the stdout logs of the
HA containers.

In fact previously we were easily able to troubleshoot haproxy startup failures
just by looking in the journal. These days instead if haproxy fails to start we
have no traces whatsoever in the logs, because when a container fails it gets
stopped by pacemaker (and consequently removed) and no logs on the system are
available any longer.

Tested as follows:
1) Redeploy a previously deployed overcloud that did not have the patch
and observe that we now log the startup of HA bundles in /var/log/containers/stdouts/*bundle.log

[root@controller-0 stdouts]# ls -l *bundle.log |grep -v -e init -e restart
-rw-------. 1 root root   16032 Apr 14 14:13 openstack-cinder-volume.log
-rw-------. 1 root root   19515 Apr 14 14:00 haproxy-bundle.log
-rw-------. 1 root root   10509 Apr 14 14:03 ovn-dbs-bundle.log
-rw-------. 1 root root    6451 Apr 14 14:00 redis-bundle.log

2) Deploy a composable HA overcloud from scratch with the patch above
and observe that we obtain the stdout on disk.

Note that most HA containers log to their usual on-host files just
fine, we are mainly missing haproxy logs and/or the kolla startup only
of the HA containers.

Closes-Bug: #1872734

Change-Id: I4270b398366e90206adffe32f812632b50df615b
2020-04-15 20:10:03 +00:00
Takashi Kajinami
b7cb8896ee Do not manage pv/vg for cinder iscsi backend
They are currently created within tripleo-heat-teampltes, so there are
no reasons why we should create it by puppet.

Change-Id: Icd8730aa4d47bb1059321014d5e8b2c5c323976a
2020-04-15 14:51:41 +00:00
Takashi Kajinami
474d20438a Remove OpenDaylight support
... because OpenDaylight tempmates and environemtns were alredy removed
in tripleo-heat-teampltes[1].

[1] 9c3638b8a13ea08a1bab95c9cd6ab335b729b6b3

Change-Id: I0204b6985de71441e0f63f21cfda24d55fd340e5
2020-04-14 22:42:44 +09:00