681 Commits

Author SHA1 Message Date
Zuul
f5ba43ea21 Merge "Add DPDK support for OVN" 2019-05-10 21:03:53 +00:00
2471642f6f [ipaclient] Fix type of MakeHomeDir heat param
https://review.opendev.org/#/c/650899 added this new
Heat Parameter but set type to 'bool', the correct type
is 'boolean', this patch fixes it.

Also change the comparison in shell script to handle
both True/true by converting the variable to lower case.

Related-Bug: #1823727
Change-Id: I52ba523ecbfd8282858e3102b29189d8ce287a26
2019-05-10 10:38:19 +05:30
Zuul
1cb668fb0d Merge "Add mkhomedir option to ipa-client-install" 2019-05-09 16:24:40 +00:00
Emilien Macchi
a82f3f0c79 Scale-down tasks for RHSM
First implementation of scale-down tasks, for Red Hat Subcription
Manager.

With this patch, when an overcloud node will be removed, Ansible will
take care of unregister the node from the Red Hat subscription properly
before the node is actually removed from the stack.

Change-Id: I7c08b0f9dcbc583af02cef64d0e953756e344d27
2019-04-24 15:08:16 +00:00
Zuul
2add17b409 Merge "Make krb-service-principal metadata per-Role" 2019-04-16 20:17:17 +00:00
Saravanan KR
fca0945708 Add DPDK support for OVN
Add a service to enable DPDK on the compute nodes,
along with OVN.

Change-Id: I4473f1dfef9eebb886823fb2f436d14dd5b6d5ad
2019-04-12 13:26:25 +05:30
Zuul
ff52c2de67 Merge "Fix usage of satellite in organization mode" 2019-04-11 23:35:10 +00:00
Gael Chamoulaud
7bf040e8f9 Fix minor typos
* s/wrokbooks/workbooks/
* s/execututed/executed/

Change-Id: I7a5ce8e67da59dc8a33dce06099f819d8807653e
Signed-off-by: Gael Chamoulaud <gchamoul@redhat.com>
2019-04-09 13:49:24 +02:00
Cyril Lopez
364a0eaabc Add mkhomedir option to ipa-client-install
To allow PAM to create home directory for
user who do not have one, ipa-client-install
need an option. This is added by MakeHomeDir
variable.

Closes-bug: #1823727

Change-Id: I040014482e9126947b8c4a1d7b1bf7645f926c4b
Signed-off-by: Cyril Lopez <cylopez@redhat.com>
2019-04-08 15:48:54 +02:00
Cyril Lopez
d80a956d72 Fix usage of satellite in organization mode
When satellite is used in organization mode, deployments were failing
due to a change on code return on subscription manager. This last will
generate an error any way so this is a bypass.

Tested on queen.

Closes-Bug: #1822725

Change-Id: I0dd65cc752a6bd94bec59f695e55aa85ef8f0192
Signed-off-by: Cyril Lopez <cylopez@redhat.com>
2019-04-08 09:20:41 +02:00
Harald Jensås
d5ecc1f651 Make krb-service-principal metadata per-Role
Not all roles are connected to all networks, there is no
need to create metadata for networks not associated with
the role.

In edge/spine-and-leaf deployments the total number of
composable networks used can be high. Passing all the
networks we quickly go beyond the nova metadata fields
size limit (each field cannot exceed 256 bytes).

Also update tools/check-up-to-date.sh script to use the
simple yaml-diff.py instead of diff. The env generator
code will sort data, while jinja rendered environments
are not sorted, thus need to diff the data in yaml not
the text.

Closes-Bug: #1821377
Change-Id: I5ae3bc845b0a6ad6986d44b14ff4b0737a9b033b
2019-04-05 14:22:20 +00:00
Sylvain Afchain
3c49d1c76c Fix skydive deployment not able to read ssh private key
Change-Id: Ic524d895e14c201eebb2017b583b66fbdc33d381
2019-03-29 00:30:57 +01:00
Michele Baldessari
4251eb7816 ipaclient: do not explicitely install python-simplejson
We currently install python-simplejson unconditionally.
I believe we can avoid doing so because nothing actually uses simplejson
in these scripts:

$ grep -i simplejson extraconfig/services/ipaclient.yaml
$

We do this so we do not have to conditionalize the package installation
for CentOS/RHEL 8, because there the package is called
python3-simplejson

Change-Id: I133714ecbf8fb66647cb153a39dbd5a23bf68fe9
2019-03-26 07:41:10 +00:00
Michele Baldessari
5b6984eb0f Fixup ipaclient.yaml for python3
This change does two things:
1. it uses print() which is the only supported way of calling print
   in python3 (and still works with python2). This way we avoid the
   following error:

SyntaxError: Missing parentheses in call to 'print'. Did you mean print('...')?

2. It uses the PythonInterpreter variable to choose the python
   interpreter

Tested and we correctly get the right wanted interpreter:
...
fqdn=`echo $data | /usr/bin/python3 -c 'import json,sys;obj=json.load(sys.stdin);print(obj.get("join", {}).get("hostname", ""))'`
...

Change-Id: I6e68664c650d0481a9f0cfd21985434d8c75e1a2
Co-Authored-By: Luca Miccini <lmiccini@redhat.com>
2019-03-21 07:02:08 +00:00
Zuul
ad11380a15 Merge "Allow embedded Skydive etcd port" 2019-03-13 21:13:28 +00:00
Zuul
792f41ceb7 Merge "Introduce OpenShiftAnsiblePath parameter" 2019-03-13 17:43:41 +00:00
Harald Jensås
42b0bc930a Support ctlplane subnet host routes from undercloud.conf
Change: I692fcc4a494b2cda1911814a53a0c6ec2f99f807 in
python-tripleoclient added support to define host routes
for the subnets in undercloud.conf.

Update the undercloud ctlplane network post script so
that it add's these routes to the host_routes property
of the undercloud ctlplane subnets.

THT already uses the data in the subnets host_routes, it
is passed as ControlPlaneStaticRoutes to NetworkConfig
unless ControlPlaneStaticRoutes was statically overriden
in the environment.

Closes-Bug: #1819464
Depends-On: I692fcc4a494b2cda1911814a53a0c6ec2f99f807
Change-Id: I46b7c7175f542ad4d375a20f133c05064e7b7222
2019-03-12 16:01:22 +01:00
Zuul
34c6173b07 Merge "Use dedicated container tag per skydive service" 2019-03-05 19:54:59 +00:00
Zuul
36fedd3a40 Merge "Remove unused resources of PreNetworkConfig for NFV" 2019-03-05 19:36:18 +00:00
Saravanan KR
ad5dc5ca60 Remove unused resources of PreNetworkConfig for NFV
With config-download as only supported mechanism, remove
the stack based deployments (which are already replaced
with ansible base service BootParams).

Change-Id: I7ca8189432adf64922bd74dc0bceb84a5b297390
2019-02-27 15:15:12 +05:30
Zuul
613a1b552b Merge "Revert "Remove host-config-and-reboot interface"" 2019-02-27 08:44:40 +00:00
Nicolas PLANEL
eab673e9c7 Fix skydive_vars evaluation
Fix skydive_vars.{agents,analyzers} to be evaluate and included for each hosts

Change-Id: Ic36abca8289c34a5c1a405aecd023a3c048d0b6e
2019-02-26 18:24:48 +01:00
Zuul
af463b172d Merge "Make openshift-ansible working dir owned by tripleo-admin" 2019-02-22 18:48:02 +00:00
Sylvain Afchain
f48ba58961 Use dedicated container tag per skydive service
Change-Id: Iba2e3643708f4942cbd012c8c8d16d9c25778cdf
2019-02-22 09:48:03 +01:00
Sylvain Afchain
b697b0184f Allow embedded Skydive etcd port
Skydive uses an embedded etcd. Ports
need to be opened in clustering mode.

Change-Id: Ia2cbc45522c98f3f55eb52374725bf502785f40f
2019-02-20 15:27:53 +01:00
Saravanan KR
5c2e741da3 Revert "Remove host-config-and-reboot interface"
This reverts commit 2a8719960103d2619e908290d80235e6079c334d.

BootParams takes care of the kernel args configuration and
reboot via ansible. But Enabling of OVS-DPDK (EnableDpdkDeployment)
is still handled as part of the PreNetworkConfig (host_config_and_reboot).
It can be cleaned-up to remove unused bits, but not the entire stack.

Change-Id: Ifeb029ddaeb2bc60f43abdb8bdb02a4c911ace30
2019-02-20 09:59:08 +05:30
Zuul
453ee72c89 Merge "Add missing RoleParameters and ServiceNames" 2019-02-20 03:12:02 +00:00
Emilien Macchi
2a87199601 Remove host-config-and-reboot interface
host-config-and-reboot interface was deprecated in Queens in favor of:
OS::TripleO::Services::BootParams: extraconfig/pre_network/boot-params-service.yaml

and doesn't work with config-download, which has been the default since
Rocky.

Let's remove these files.

Change-Id: I85a781cecb7224881b827ff442376c706f1c771b
2019-02-19 11:57:04 -05:00
Martin André
f2412dacf1 Make openshift-ansible working dir owned by tripleo-admin
The openshift-ansible tasks are now invoked with the tripleo-admin
user, which doesn't by default have write access to /var/lib/mistral,
but it does have sudo access.

This change makes /var/lib/mistral/<stack>/openshift be owned by the
tripleo-admin user so that subsequent tasks can write to that
directory.

Change-Id: I7762af7b824ae0c7303438d48fc35c9f24a00c9c
Related-Bug: #1813832
2019-02-19 09:31:19 +01:00
Zuul
bea3c77c25 Merge "make skydive working with folder created by tripleo-admin" 2019-02-19 01:47:09 +00:00
Alex Schultz
703bf1c050 Add missing RoleParameters and ServiceNames
RoleParamters and ServiceNames are required parameters for
PreNetworkConfig

Change-Id: I0ff266d12a652b6cbe49fcbe87046302c872f56c
Closes-Bug: #1816450
2019-02-18 08:45:00 -07:00
Sylvain Afchain
9e264ea91b make skydive working with folder created by tripleo-admin
Makes /var/lib/mistral/overcloud/skydive be owned by
tripleo-admin so that playbook and vars files can be written.

Change-Id: I72e396747f487a76822f18906edfb8c015b7dd36
2019-02-15 00:44:14 +01:00
Ade Lee
2a83856585 Move ipa enrollment to host_prep_tasks
This addresses a possible bug when using FreeIPA to do TLS
everywhere.

It is possible that the IPA server is not on the ctlplane.
In this case, when the nodes start up, the registration of the node
with IPA will fail, resulting in failed certificate issuance requests
later on.

We introduce a composable service to run in host_prep_tasks.
This will always run once the networks have been set up.  If the
instance has already been enrolled (by cloud-init or in an update),
then the script executed by the service will just exit.

In this iteration, we simply execute the code that the cloud-init
would have done.  In later releases, we will execute all the code
performed by novajoin-server here in ansible - and deprecate the
novajoin server.

Change-Id: I31f64c3cbd1d151e3c2a436cc3e2ec5316535087
Co-Authored-By: Juan Antonio Osorio Robles <jaosorior@redhat.com>
Resolves: rhbz#1661635
Closes-Bug: #1815924
2019-02-14 16:07:17 +00:00
Steve Baker
5ceb3c5ec7 Make ceph-ansible working dir owned by tripleo-admin
The ceph-ansible tasks are now invoked with the tripleo-admin user,
which doesn't by default have write access to /var/lib/mistral, but it
does have sudo access.

This change makes /var/lib/mistral/overcloud/ceph-ansible be owned by
the tripleo-admin user so that subsequent tasks can write to that
directory.

Related-Bug: #1813832
Change-Id: I98bb38078be84cbda3e9a9e338af0d054dc53420
2019-02-12 09:13:15 +05:30
Zuul
94203f0447 Merge "Fix deployment of gluster with openshift AllInOne" 2019-02-07 06:48:09 +00:00
Zuul
a23598c413 Merge "Include the DB password in a Mistral environment for creating backups and restores" 2019-02-02 02:48:02 +00:00
Martin André
b1b67ac63c Introduce OpenShiftAnsiblePath parameter
This simplifies the tripleo-heat-templates interface to only offer the
OpenShiftAnsiblePath parameter instead of the myriad of
OpenShift*Playbook parameters, since all of these would very likely be
in the same openshift-ansible directory.

Change-Id: I367a25ae1b03d8bdb712277bd8ade30e53b8af11
2019-01-24 12:44:05 +01:00
Martin André
8a818ab226 Apply changes to cluster using updated inventory
It could cause issue when being on inventory containing nodes marked as
new.

Specifically, it caused an undefined ansible variable error when
re-running the deploy playbook on an inventory that contained nodes in
the new_masters group.

Closes-Bug: #1812962
Change-Id: Iaf9403b5f60f06769d94317d261de8cad94274ab
2019-01-23 11:45:05 +01:00
Martin André
ff36d44af5 Generate post-deployment openshift-ansible inventory
This allows to run custom openshift-ansible playbooks with an inventory
that reflects the deployment status.

Related-Bug: #1812962
Change-Id: I94b6ae04a3e31fe0b7951df2446cc91b5842cd77
2019-01-23 11:42:26 +01:00
Martin André
1febc8b7b3 Store nodes information in a dict
Re-using the same variable for each role was not very clean and forced
us to re-check which master nodes were new in the deployment. Instead,
use a dict for `role_nodes` and `new_role_nodes` with keys being the
role name.

This will allow us to re-generate updated inventory in later step
without needing to set the facts once again.

Related-Bug: #1812962
Change-Id: I21ed56a1c4d43a3e0945c8b74dd94ccf89dc05b0
2019-01-23 11:42:26 +01:00
Martin André
cb675a91a7 Fix openshift playbook import
I4aa8055fe800723b3e140f8232c9e41e769e11f3 wrongly replaced 'include'
with 'include_tasks' in openshift and kubernetes templates and broke
their deployment, resulting in an ansible error:

  ERROR! 'include_tasks' is not a valid attribute for a Play

Use import_playbook instead.

Change-Id: I0bb9bfabeb06dc9d602ad173ce2d12d1771b6b1f
Closes-Bug: #1812983
2019-01-23 11:42:20 +01:00
Zuul
a535dd6e9c Merge "Revert "post_deploy: support python3 for undercloud scripts."" 2019-01-23 05:14:18 +00:00
Alex Schultz
85d9cf4956 Revert "post_deploy: support python3 for undercloud scripts."
This reverts commit 1143714b340cc5a3c9ed422af54fc12993067005.

So we're actually changing this out in packaging. It'll fail
if you deploy from code, but the fedora version of the 
package should end up with /usr/bin/python3. This is why
we didn't hit this in CI.

https://review.rdoproject.org/r/#/c/18465/

Change-Id: Ibad6ff84b33ae3d6011c87028fe02695eea69482
2019-01-23 00:23:02 +00:00
Zuul
36dbe92cc0 Merge "post_deploy: support python3 for undercloud scripts." 2019-01-22 23:24:43 +00:00
Emilien Macchi
1143714b34 post_deploy: support python3 for undercloud scripts.
Use str_replace to use Python3 interpreter when needed in cloud_yaml.py
called by undercloud_post and standalone_post.

Also for undercloud_post.py and undercloud_ctlplane_network.py.

Change-Id: I48d779c0b142d885214ca4c2158f61f7f886ebf7
2019-01-22 12:58:34 -05:00
Carlos Camacho
166803d05f Include the DB password in a Mistral environment for creating backups and restores
We need to include also the Undercloud DB in a Mistral
environment to be able to create the DB backup from the CLI.

Now, we do this using python and THT but we didn't include it.

Change-Id: If503e733b103a34ae5639eb56dfae05f9783d59a
Closes-Bug: 1812839
2019-01-22 16:08:03 +01:00
zhulingjie
a6479d0b51 use include_tasks instead of include
Change-Id: I4aa8055fe800723b3e140f8232c9e41e769e11f3
2019-01-22 04:54:34 +00:00
Zuul
1bcacedb11 Merge "Remove gluster settings from previous deployments on re-deploy" 2019-01-22 00:49:48 +00:00
Zuul
f228e94efa Merge "Set container images for openshift 3.11" 2019-01-17 22:25:56 +00:00
Zuul
4b4f7f89da Merge "Remove openshift-ansible customization" 2019-01-17 22:25:51 +00:00