1357 Commits

Author SHA1 Message Date
Steve Baker
ab1cba9047 Expose parameter MistralDockerGroup
This will be set to true for undercloud deployments

Change-Id: I4e34a930d384ae4220070e3b613477b9ff89314c
Blueprint: container-prepare-workflow
2018-05-15 00:22:39 +00:00
Zuul
9fa87488dc Merge "Add compute node L3 agent container for DVR" 2018-05-14 23:37:11 +00:00
Zuul
f5152da976 Merge "Switch public endpoints to use FQDNs by default" 2018-05-14 23:27:04 +00:00
Zuul
7f23133651 Merge "Mark Designate as experimental" 2018-05-09 23:09:14 +00:00
Zuul
767d689fed Merge "Add no-tls environment to env-generator" 2018-05-09 16:57:42 +00:00
Zuul
a09f481909 Merge "Add EnablePublicTLS flag" 2018-05-09 16:21:45 +00:00
Zuul
fee920d897 Merge "Set normal CephAnsiblePlaybook on update/upgrade/ffwd converge" 2018-05-09 15:40:17 +00:00
Brent Eagles
bb1100dd3d Add compute node L3 agent container for DVR
Neutron OVS DVR requires a L3 agent container with a special
configuration on the compute node.

Change-Id: Iab06c11de90b8ebc7dc6bd946367e5693a4a0f71
Closes-Bug: #1717316
2018-05-08 16:25:00 -02:30
Zuul
62a266c6c4 Merge "Add support for NVMeOF cinder backend" 2018-05-08 18:22:19 +00:00
Juan Antonio Osorio Robles
8e104b3c54 Switch public endpoints to use FQDNs by default
This is in preparation for TLS by default, since the TLS certificate will
use FQDNs for the SubjectAltName, and that will be verified.
This required for us to change both CloudDomain and CloudName to be
required parameters, and not default them to use localdomain. This is to
avoid folks in real deployments using them in their clouds.

Change-Id: Ic70dd323b33596eaa3fc18bdc69a7c011ccd7fa1
2018-05-08 18:16:27 +03:00
Juan Antonio Osorio Robles
9be5b8fce3 Add no-tls environment to env-generator
It was missed from the commit that introduced the environment.

Change-Id: I7e370f5b16ba8b29cd1af36fec6da436f70843a6
2018-05-08 18:15:53 +03:00
Juan Antonio Osorio Robles
1260da2746 Add EnablePublicTLS flag
This flag is on by default, and serves to enable (or disable) the
public TLS by default feature.

It differs from the PublicSSLCertificateAutogenerated flag in the fact
that it works with mistral, while PublicSSLCertificateAutogenerated
works with certmonger in the overcloud.

Change-Id: If553ecff26d5ecd529c37ca438e0ba1795e9ecca
2018-05-08 10:45:09 +00:00
Zuul
4f5dceca90 Merge "undercloud: switch to the "direct" deploy interface by default" 2018-05-08 04:20:57 +00:00
Zuul
f94b734766 Merge "undercloud: do not hardcode eth1 for public interface" 2018-05-07 21:18:49 +00:00
Zuul
cb9a66c41e Merge "Undercloud upgrades will use upgrade_tasks" 2018-05-07 21:18:46 +00:00
Hamdy Khader
afcf2c71e3 Add support for NVMeOF cinder backend
Change-Id: I2ee3b44fc4a7bede635b0bfcacd1dab8547d123a
2018-05-07 15:45:42 +03:00
Zuul
ab48921795 Merge "[DellEMC]Update Manila Unity driver" 2018-05-06 20:40:15 +00:00
Emilien Macchi
54fcdb2cff undercloud: do not hardcode eth1 for public interface
Instead, rely on local_interface parameter from undercloud.conf like it
was with instack-undercloud.

Depends-On: I94de786a4e2d6bfbc66e08f32ea65c217ea35268
Change-Id: Id46256b66aa43c38a6a6501d2f26dfb85009b1ef
2018-05-05 06:52:38 +00:00
Emilien Macchi
77aa6763f6 Undercloud upgrades will use upgrade_tasks
Instead of using host_prep_tasks (which are part of deployment tasks),
we'll use the upgrade tasks that are now well known and tested in
previous releases, when the we containerized the overcloud.

Depends-On: Id25e6280b4b4f060d5e3f78a50ff83aaca9e6b1a
Change-Id: Ic199c7d431e155e2d37996acd0d7b924d14af2b7
2018-05-05 06:52:34 +00:00
Zuul
caf074731e Merge "heat: align config with instack-undercloud" 2018-05-04 18:41:20 +00:00
Jiri Stransky
4742f2ed5a Set normal CephAnsiblePlaybook on update/upgrade/ffwd converge
As we discovered bug #1768586 we'll need to make sure that every
parameter tweak in plan is followed by a stack update.

So far the Ceph upgrade command did set param -> stack update -> unset
param (only in plan). However this means the last CephAnsiblePlaybook
setting (back to normal deploy playbook) was discarded.

Let's reuse normal converge commands to converge CephAnsiblePlaybook
too, and we can remove the (now unused) ceph-upgrade-converge.yaml. We
won't do more stack updates than necessary, and at the same time the
user workflow stays somewhat consistent between envs that do and don't
have Ceph.

An alternative would be to run the as part of the Ceph command, but
that either means we'd have to run one more stack update then
necessary, or skip the last converge in envs with Ceph, and
essentially diverge further from the non-Ceph workflow.

Change-Id: If596531cbb1e750ed67e66391743f4c1833e4337
Depends-On: I025eac40f8bda5f23c789e7fef1a9e9b49947f66
Partial-Bug: #1768586
2018-05-04 11:34:23 +02:00
Zuul
108706e37f Merge "Ensure config-download mappings are unset on ceph-upgrade" 2018-05-03 16:57:34 +00:00
Zuul
a2cf9be58a Merge "Introduce Ceph upgrade environments" 2018-05-03 16:53:16 +00:00
Emilien Macchi
56898d95fb heat: align config with instack-undercloud
- Enable heat convergence for containerized undercloud
- Set max_json_body_size=4194304 for containerized undercloud.
- Introduce HeatMaxNestedStackDepth parameter.
- Introduce HeatReauthenticationAuthMethod parameter and configure it to
  'trusts' for the undercloud.

Change-Id: I044bf29e7ae320a478e0ba0eb12870f47735d4f1
2018-05-03 08:35:09 -07:00
Zuul
6fe62ce661 Merge "Fix sample env data" 2018-05-02 20:18:27 +00:00
Dmitry Tantsur
89de728acb undercloud: switch to the "direct" deploy interface by default
Instead of serving images via slow and somewhat unreliable iSCSI protocol,
this deploy method makes IPA download them from the undercloud Swift.

Change-Id: Ic569358b781337ec6ba8ba802ada1f940917bd61
Implements: blueprint ironic-direct-deploy
2018-05-02 11:58:41 +02:00
Alex Schultz
03c8cbcdc2 Fix sample env data
I934561612d26befd88a9053262836b47bdf4efb0 renamed the rabbit ssl
parameters that we use in the same environment generate but since the
script did not fail, it made it past CI. This change fixes the
RabbitClientUseSsl parameter in the environment to match the new
RpcUseSsl flag and updates the check script to fail if this happens
again.

Change-Id: I47c63875c6934bca2903883787467fc1804ba5da
Closes-Bug: #1768358
2018-05-01 16:05:02 -06:00
Zuul
7eb4eafae6 Merge "Add an openshift-cns service" 2018-05-01 09:25:09 +00:00
Zuul
b66858fd99 Merge "Removing the deprecated environment files for hw offloading in containers" 2018-05-01 08:55:43 +00:00
Zuul
bf85ebfc01 Merge "[DellEMC]Update Manila VNX driver" 2018-05-01 08:55:38 +00:00
Zuul
7952d2e53a Merge "Add support to ironic "direct" deploy interface" 2018-04-30 15:18:26 +00:00
waleed mousa
3379467859 Removing the deprecated environment files for hw offloading in containers
For deploying with hw offloading in containers, we should use the
ovs-hw-offload.yaml file with neutron, opendaylight and ovn.
In case of "ovn" deployment we need also:
"environments/services-docker/neutron-ovn.yaml"
and in case of "opendaylight" we need:
"environments/services-docker/neutron-opendaylight.yaml"

Change-Id: Ic844466954cde3b7206ab6a209ded6abb1acbbf6
2018-04-29 07:39:51 +00:00
Zuul
a3a1ed5933 Merge "Fix few issues with deploying with baremetal-services.yaml" 2018-04-28 23:51:23 +00:00
Zuul
d147e837a7 Merge "Parameterizing Puppet Tags" 2018-04-28 04:55:10 +00:00
Zuul
24b4c1ecbd Merge "Switch remaining env files to containers defaults" 2018-04-27 11:22:23 +00:00
Giulio Fidente
fc9d9ee493 Ensure config-download mappings are unset on ceph-upgrade
Purpose is to ensure that any mapping previously used to enable
config-download is reset to perform a regular Heat stack update on
ceph-upgrade. We may need to do "update/upgrade/ffwd -> ceph ->
converge" instead of the previously assumed "update/upgrade/ffwd ->
converge -> ceph".

This also removes the no-op of DeploymentSteps -- we need them enabled
during Ceph upgrade as we need firewall rules applied.

Co-Authored-By: Jiri Stransky <jistr@redhat.com>
Closes-Bug: #1767318
Related-Bug: #1767317
Change-Id: I52312ffcd438c354872ab3c74138b47ae71aab4b
2018-04-27 11:55:58 +02:00
Zuul
68bfa9828f Merge "Switch to config-download by default" 2018-04-27 08:14:36 +00:00
Bogdan Dobrelya
041251d473 Switch remaining env files to containers defaults
Mark regular non-containerized services with FIXME
to be switched, once it is containerized

Do not mark yet an external/backend/plugin/host-config
related puppet services templates with that FIXME

Mark puppet/services/ceph- related templates as TODO
switch it to containerized ceph-ansible eventually, maybe.

Change-Id: Ib9fbad05eeb57dc641499fbf411cb5870da7a8e9
Signed-off-by: Bogdan Dobrelya <bdobreli@redhat.com>
2018-04-26 23:45:01 +00:00
Zuul
98dfa06600 Merge "Add OVNCMSOptions in dvr environment files" 2018-04-26 23:12:06 +00:00
Zuul
80b12bcbe9 Merge "Move remnants of environments/services-docker" 2018-04-25 18:23:02 +00:00
James Slagle
f44e8d7bd2 Switch to config-download by default
Updates overcloud-resource-registry.j2.yaml to include the mappings from
enviornments/config-download-environment.yaml. This enables
config-download by default. The environment to explicitly enable
config-download is deprecated.

An environment at environments/disable-config-download.yaml is added
which can be used to disable config-download but is marked as
deprecated.

Change-Id: I8389a0c48e1aa610fdc6a8580516889340883034
implements: blueprint config-download-default
2018-04-25 09:42:13 -04:00
Noam Angel
bc0f8d0f0b Fix few issues with deploying with baremetal-services.yaml
This patch will fix few issues with deploying baremetal services:

  1. Fix NeutronCorePlugin path.
  2. Add Cinder service.


Change-Id: Ia60518837e7c6c9549f6637c3236140361fbc790
2018-04-25 05:53:47 +00:00
Zuul
cfc4126af2 Merge "No-op Mistral workflow resources for update/upgrade/ffwd" 2018-04-25 04:53:30 +00:00
Zuul
822bd996b3 Merge "Support separate oslo.messaging services for RPC and Notification" 2018-04-25 04:43:46 +00:00
Yong Huang
79719a11cc [DellEMC]Update Manila Unity driver
This patch adds following 3 options:

* network_plugin_ipv6_enabled
* emc_ssl_cert_verify
* emc_ssl_cert_path

Depends-On: https://review.openstack.org/538146

Change-Id: Ic0391618cf00413d6adc0ed3cba97eb76793c36a
2018-04-25 11:22:07 +08:00
Peter Wang
60796ebfc9 [DellEMC]Update Manila VNX driver
This patch adds following 3 options:

* network_plugin_ipv6_enabled
* emc_ssl_cert_verify
* emc_ssl_cert_path

Depends-On: https://review.openstack.org/555648

Change-Id: I42b0555c077dbc9f9d5ae4efaf1ec41a9c563b6a
2018-04-25 02:08:39 +00:00
Lukas Bezdicka
6730accc63 Introduce Ceph upgrade environments
These will disable OS::TripleO::DeploymentSteps on prepare, to allow
for a Heat stack update without triggering a puppet apply and then
restore the Heat resource and the Ceph ansible playbook on converge.

Change-Id: Ie765b429c4cb36d9dd616584cc1d4f45184fa1b8
2018-04-24 09:01:39 +00:00
Sai Ram Peesapati
fa3c8222f4 Parameterizing Puppet Tags
This commit will also provide third party vendors an option
to pass all the puppet tags that will configure the files needed
to enable their plugin.

Change-Id: I60feb19bf65aef82cfa56822e8ef79f13f70913d
2018-04-23 21:24:52 -04:00
Zuul
784145857d Merge "Add environment file for Mellanox SDN" 2018-04-23 17:11:52 +00:00
Dmitry Tantsur
22459dcfa6 Add support to ironic "direct" deploy interface
This change adds a configuration script that sets up Swift temporary
URL key, if it is not set up otherwise. This key is required for both
ironic "direct" and "ansible" deploy interfaces.

The "direct" deploy interface is then enabled for the undercloud.

Implements: blueprint ironic-direct-deploy
Change-Id: I3cbc51831fc3e185f907b44da654f71aa0f4c420
2018-04-23 14:17:27 +02:00