13447 Commits

Author SHA1 Message Date
Zuul
a94f17d98c Merge "Fix NovaDefaultFloatingPool parameter" 2021-03-09 08:50:34 +00:00
Zuul
4b4aaeb65a Merge "Add non-tls listener to Memcached" 2021-03-08 18:43:09 +00:00
Zuul
2ecab2c612 Merge "[ovn]: Enable network logging in neutron service plugins" 2021-03-08 15:08:23 +00:00
Zuul
5267cde8c8 Merge "Fix plan-samples README.rst" 2021-03-06 07:21:22 +00:00
Zuul
c0feb7893f Merge "Support configuring cinder's RPC and WSGI timeouts" 2021-03-06 07:21:05 +00:00
Zuul
1e7e79eab8 Merge "Add posibilities to set ovndbs monitor interval" 2021-03-05 16:38:58 +00:00
Zuul
11236de7db Merge "Add delegate_fact_hosts: false on ci scenarios" 2021-03-04 17:20:46 +00:00
Flavio Fernandes
db270e91f4 [ovn]: Enable network logging in neutron service plugins
NeutronServicePlugins needs to include 'log' in order to support
the security-group logging functionality.

Also added log to deployment/neutron/neutron-base.yaml as part of
the default NeutronServicePlugins.

Depends-On: https://review.opendev.org/c/openstack/neutron/+/768129
Change-Id: I08fedd65bb4c97bbd73bf966ae763e4cdedebab2
Related-Bug: #1914757
Signed-off-by: Flavio Fernandes <flaviof@redhat.com>
2021-03-04 10:05:57 -05:00
Zuul
df71bc54d4 Merge "Remove tripleo_transfer cleanup.yml reference" 2021-03-04 14:57:37 +00:00
Zuul
ccaa51a324 Merge "Add environments to disable Heat and Neutron" 2021-03-04 13:47:30 +00:00
Zuul
508e7e4b23 Merge "Remove default plan-environment.yaml" 2021-03-04 11:27:49 +00:00
Francesco Pantano
c0e8697550
Add delegate_fact_hosts: false on ci scenarios
This change adds delegate_facts_hosts: false to the
existing ceph-ansible scenarios.
This was introduced due to the --limit option to avoid
gathering facts, but since we're running on standalone
and the same node is present in all groups, having that
variable set to True (which is the ceph-ansible default)
makes no sense.

Change-Id: I44433731f73882f62591e8067743beec4d423ef7
2021-03-04 10:38:20 +01:00
ramishra
e7d824688e Fix plan-samples README.rst
This is quite stale referencing mistral workflows.

Change-Id: I3485543210aa04c89d9c0873a6d0e10c3d5758fc
2021-03-04 13:42:01 +05:30
Alexey Stupnikov
a6c1aff5c5 Fix NovaDefaultFloatingPool parameter
nova::api::default_floating_pool parameter was removed from
puppet-nova back in 2018 with
I2624b92871f4cba5a7361a5d006d985946493e83

It is now recommended to use
nova::network::neutron::default_floating_pool parameter to
define default floating IP pool.

Partial-Bug: #1916386
Change-Id: If419d53fc3a90cdd62271c00714fff79a3b4fd12
2021-03-03 20:47:56 +01:00
Kamil Sambor
9ece6f97af Add posibilities to set ovndbs monitor interval
Add posibilities to configure ovn dbs monitor interval
in tht by OVNDBSPacemakerMonitorInterval (default 30s).
Under load, this can create extra stress and since the
timeout has already been bumped, it makes sense to bump
this interval to a higher value as a trade off
between detecting a failure and stressing the service.

Depends-On: https://review.opendev.org/#/c/710407/
Change-Id: Id836676826f6e7c97ef8e3d665ab3e467ad055ba
2021-03-03 17:00:58 +01:00
Jesse Pretorius (odyssey4me)
0f081b4f80 Remove tripleo_transfer cleanup.yml reference
With the changes in https://review.opendev.org/771657
this cleanup task file no longer exists. The cleanup
is done within the role automatically via a block/rescue.

Related-Bug: #1908425
Related-Bug: rhbz#1904681
Related-Bug: rhbz#1916162
Needed-By: Ifc03f9eb1cb4ca3faec194569f4cb2dace93323f

Change-Id: I0c509370332797fe563804b0ddb8f1a5d4742994
2021-03-03 12:58:44 +00:00
d56a191590 Pass ipaclient_hostname to ipaclient role
When 'ipaclient_hostname' is not passed it's
default's to 'ansible_fqdn', which is not available
when setting ANSIBLE_INJECT_FACT_VARS=False[1], let's
pass it explicitly.

[1] https://review.opendev.org/c/openstack/python-tripleoclient/+/776558

Closes-Bug: #1917582
Change-Id: I5b3ab81d7d885b5373c9c75a2b3ca637efb87c1e
2021-03-03 17:49:14 +05:30
Zuul
72c4b8c126 Merge "Fix logging_sources map_merge issues" 2021-03-02 21:46:01 +00:00
James Slagle
59afff0c06 Add environments to disable Heat and Neutron
These environments will be used by the undercloud install to selectively
disable these services as needed.

Change-Id: I2c9cf50363579d4e18aaeaf783770ca7a4266622
Signed-off-by: James Slagle <jslagle@redhat.com>
2021-03-02 07:47:01 -05:00
Zuul
961df3e597 Merge "Set tag hints on ControlVirtualIP" 2021-03-02 01:53:26 +00:00
Zuul
aa98408f28 Merge "Restore PreNetworkConfig resources" 2021-03-01 20:42:08 +00:00
Zuul
124fabb8a8 Merge "Allow configuring cinder mount point for glance cinder store" 2021-03-01 20:41:48 +00:00
Harald Jensås
843713d06e Fix logging_sources map_merge issues
Fixes an issue where map_merge was used incorrectly,
trying to merge dict with null and passing a list of
only one map.

This caused the map merge not to happen, and the
$RoleServiceChain output to carry the actual map_merge
in service_config_settings instead of the intended
merged map of rsyslog logging_sources.

Closes-Bug: #1917195
Change-Id: I529f91d5391d24bb5a6af37d3486f6ddf6cabac7
2021-03-01 09:03:15 +01:00
Michele Baldessari
aca8b5fd6f Remove ovn-dbs temporary container
With I918b6c16db6ed70d9ad612aecd7af7d725520f7b we moved the ovn-dbs
creation out of the ephemeral ovn_dbs_init_bundle container and on to
the host.

We left the ovn_dbs_init_bundle container around and kept the tag
ovn_dbs_remove_old_cruft for it. This is because with that tag
we historically triggered the needed code to make sure to handle
the transition from a deployment where ovn-dbs used the internal_api
VIP to the (current) deployment where ovn-dbs uses its own VIP.

Since ovn-dbs has its own VIP starting with train, we can now safely
drop this container.

Change-Id: I5d5df3948964c28f53eda0ba5a966c824012bd4c
2021-02-27 10:20:57 +00:00
Zuul
2e231cf7ab Merge "Upgrade mariadb storage during upgrade tasks" 2021-02-26 02:11:10 +00:00
Michele Baldessari
84c85aaff3 Fix redis_tls_proxy
Since we merged the pcs-host patches we erroneously also removed
the sidecar container that does the tls stunneling for redis.
This is needed to allow the redis master stream the deplications to
its slaves via TLS.

Tested this and we now correctly get the working container and cluster
state:
[root@controller-0 ~]# podman ps -a |grep redis
4182a78811a2  undercloud-0.ctlplane.redhat.local:8787/openstack-redis:16.2_20210218.1-hotfixupdate2       /bin/bash /usr/lo...  3 minutes ago   Up 3 minutes ago                 redis-bundle-podman-0
604a086bb53c  undercloud-0.ctlplane.redhat.local:8787/openstack-redis:16.2_20210218.1-hotfixupdate2       kolla_start           8 minutes ago   Up 8 minutes ago                 redis_tls_proxy
[root@controller-0 ~]# pcs status |grep redis
  * GuestOnline: [ galera-bundle-0@database-1 galera-bundle-1@database-2 galera-bundle-2@database-0 ovn-dbs-bundle-0@controller-0 ovn-dbs-bundle-1@controller-1 ovn-dbs-bundle-2@controller-2 rabbitmq-bundle-0@messaging-0 rabbitmq-bundle-1@messaging-1 rabbitmq-bundle-2@messaging-2 redis-bundle-0@controller-0 redis-bundle-1@controller-1 redis-bundle-2@controller-2 ]
  * Container bundle set: redis-bundle [cluster.common.tag/openstack-redis:pcmklatest]:
    * redis-bundle-0    (ocf:💓redis):  Master controller-0
    * redis-bundle-1    (ocf:💓redis):  Slave controller-1
    * redis-bundle-2    (ocf:💓redis):  Slave controller-2

We also move the redis_tls_proxy from step_2/start_order: 3 to step_1
since it actually makes sense to have it run before we start the
redis pcmk bundle at step 2 (i.e. so the slave replica can work right
away from the start).

Closes-Bug: #1916873

Change-Id: I44df0ee32e5c35b87f74bdb75dcb384496dfb6ab
2021-02-25 11:41:36 +01:00
Zuul
0968b66780 Merge "Don't try creating default admin and member roles" 2021-02-25 01:04:44 +00:00
Alan Bishop
3af965d6d2 Support configuring cinder's RPC and WSGI timeouts
New CinderRpcResponseTimeout and CinderApiWsgiTimeout parameters
support configuring cinder's corresponding RPC response and WSGI
connection timeouts. The default values (60s each) match the existing
defaults.

Change-Id: I66b472d37041f67907691f55c153ff880093e4bc
2021-02-24 13:44:35 -08:00
ramishra
c1462b7608 Don't try creating default admin and member roles
These are default roles and we don't need to create them for
ceph. Also swift user does not need admin role.

Closes-Bug: 1916756
Resolves: rhbz#1932208

Change-Id: I4d4c01d4ace8c51ae9f47f4dafd76bb3b5ed674f
2021-02-24 14:06:39 +00:00
236e0e0b71 Fix typo in ansible_facts
Remove extra underscore:-
ansible__facts --> ansible_facts

Was introduced in [1].

[1] https://review.opendev.org/c/openstack/tripleo-heat-templates/+/776659

Related-Bug: #1915761
Change-Id: I90f7fbb7590bd339074920f364f5f40b92435e14
2021-02-24 16:02:53 +05:30
Zuul
9790824f57 Merge "Add no log to podman set_fact" 2021-02-24 07:10:03 +00:00
ramishra
147335f799 Remove default plan-environment.yaml
Left the one used for derive parameters that includes
the playbooks for derive parameters.

Depends-On: https://review.opendev.org/c/openstack/python-tripleoclient/+/777293
Change-Id: I7b82364bee7fcc3a89d36255b0c8507cdd1d5a38
2021-02-24 09:40:34 +05:30
Harald Jensås
d3b8515c4f Set tag hints on ControlVirtualIP
Set tags tripleo_vip_net=ctlplane and tripleo_stack_name=$STACK_NAME
on the ControlVirtualIP port.

Related: blueprint network-data-v2-ports
Change-Id: I098f24423716688fe8ff61a894516f3e860b2a4c
2021-02-23 23:41:31 +01:00
Zuul
72b60678e0 Merge "Use ansible_facts instead" 2021-02-23 22:19:28 +00:00
Zuul
f0a0816303 Merge "Use include task for host prep tasks" 2021-02-23 22:19:07 +00:00
Alex Schultz
8d1fc85744 Use ansible_facts instead
In order to ANSIBLE_INJECT_FACT_VARS=False we have to use ansible_facts
instead of ansible_* vars. This change switches our distribution and
hostname related items to use ansible_facts instead.

Change-Id: I49a2c42dcbb74671834f312798367f411c819813
Related-Bug: #1915761
2021-02-22 17:57:17 +00:00
Zuul
b136a6808b Merge "Drop service facts usage" 2021-02-22 15:22:42 +00:00
Alex Schultz
73043121e3 Use include task for host prep tasks
Import tasks causes the tasks always to be pulled in and just skipped at
run time. This is terribly slow with more roles even when not running
against those hosts.  A similar effort was applied to the update process
I2eab008ca27546acbd2b1275f07bcca0b84b858c which should also be used
here.

Change-Id: Ibd9bb9f8a4c6a7ce3c6ebd11ce5cf444dde57c33
Related-Bug: #1915761
2021-02-22 07:07:55 -07:00
Alex Schultz
057f41345b Add no log to podman set_fact
If you run ansible with -v, the data in the set_fact task may be logged.
We don't want that for these tasks.

Change-Id: Ic6e4477c2218cf7586e70df8de7c47b798e79656
2021-02-20 19:30:16 -07:00
Zuul
4dad7163f5 Merge "Make content provider depend on tox-pep8/tht on check layout" 2021-02-19 19:28:05 +00:00
Zuul
faf683c2c1 Merge "Remove useless hieradata for keystone resource management by puppet" 2021-02-19 17:11:03 +00:00
Zuul
ce1411de77 Merge "Stop barbican servics in unupgraded controllers" 2021-02-19 16:47:45 +00:00
Marios Andreou
b5d5b7dc2b Make content provider depend on tox-pep8/tht on check layout
As part of [1] - optimize the zuul layout so that content-provider
doesn't run if openstack-tox-pep8 and openstack-tox-tht are not
green.

These jobs are voting so they block us anyway, may as well
save running anything else if these small jobs aren't complete

[1] https://review.opendev.org/q/topic:tripleo-ci-reduce

Change-Id: I5fca006e529809ace8d348735f1e10c57ef90e6b
2021-02-19 13:11:34 +02:00
Zuul
cada48fc30 Merge "Stop non-pcmk services of manila and cinder during upgrade" 2021-02-18 14:57:17 +00:00
Zuul
db8b830d65 Merge "Add parameters to allow multiple nshield HSMs" 2021-02-17 21:14:37 +00:00
Zuul
da432d357f Merge "Introducing parametrable storage configuration" 2021-02-17 18:21:43 +00:00
Zuul
ced3eb989b Merge "Default all innodb_buffer_pool_size to 1G" 2021-02-17 15:50:15 +00:00
Ade Lee
75857d3a28 Add parameters to allow multiple nshield HSMs
With this change, it is possible to configure Barbican to connect
to multiple nShield HSMs in HA mode.

Change-Id: Id086b5e661e01991913c20c0b354800a9b6e2674
2021-02-16 17:43:29 -05:00
Alex Schultz
f9100964f9 Drop service facts usage
This change switches from using service facts to using systemctl
commands to do service checks. This is done to reduce the amount of
memory used as part of the deployment.

Change-Id: I0cd5b24933e50680baefd055d6e68e277ab09315
Related-Bug: #1915761
2021-02-16 07:48:53 -07:00
Damien Ciabrini
712cfcc71b Upgrade mariadb storage during upgrade tasks
When a tripleo major upgrade or FFU causes an update or mariadb
to a new major version (e.g. 10.1 -> 10.3), some internal DB
tables must be upgraded (myisam tables), and sometimes the
existing user tables may be migrated to new mariadb defaults.

Move the db-specific upgrade steps into a dedicated script and
make sure that it is called at the right time while upgrading
the undercloud and/or the overcloud.

Closes-Bug: #1913438

Change-Id: I92353622994b28c895d95bdcbe348a73b6c6bb99
2021-02-16 09:08:40 +01:00