heat_template_version: rocky description: > OpenStack containerized Keepalived service parameters: DockerKeepalivedImage: description: image type: string DockerKeepalivedConfigImage: description: The container image to use for the keepalived config_volume type: string EndpointMap: default: {} description: Mapping of service endpoint -> protocol. Typically set via parameter_defaults in the resource registry. type: json ServiceData: default: {} description: Dictionary packing service data type: json ServiceNetMap: default: {} description: Mapping of service_name -> network name. Typically set via parameter_defaults in the resource registry. This mapping overrides those in ServiceNetMapDefaults. type: json DefaultPasswords: default: {} type: json RoleName: default: '' description: Role name on which the service is applied type: string RoleParameters: default: {} description: Parameters specific to the role type: json # TODO(emilien) Remove when Keepalived 2.0.6 is out # https://bugs.launchpad.net/tripleo/+bug/1791238 KeepalivedRestart: default: false description: Whether or not restart Keepalived. Useful for Undercloud only. type: boolean ControlVirtualInterface: default: '' description: > Interface where virtual ip will be assigned. This value will be automatically set by the deployment tool. Overriding here will override automatic setting. type: string PublicVirtualInterface: default: '' description: > Interface where virtual ip will be assigned. This value will be automatically set by the deployment tool. Overriding here will override automatic setting. type: string MonitoringSubscriptionKeepalived: default: 'overcloud-keepalived' type: string conditions: control_iface_empty: {equals : [{get_param: ControlVirtualInterface}, '']} public_iface_empty: {equals : [{get_param: PublicVirtualInterface}, '']} resources: ContainersCommon: type: ../containers-common.yaml outputs: role_data: description: Role data for the Keepalived role. value: service_name: keepalived monitoring_subscription: {get_param: MonitoringSubscriptionKeepalived} config_settings: map_merge: - tripleo::keepalived:custom_vrrp_script: 'test -S /var/lib/haproxy/stats && echo "show info" | socat /var/lib/haproxy/stats stdio' - tripleo::keepalived::firewall_rules: '106 keepalived vrrp': proto: vrrp - if: - control_iface_empty - {} - tripleo::keepalived::control_virtual_interface: {get_param: ControlVirtualInterface} - if: - public_iface_empty - {} - tripleo::keepalived::public_virtual_interface: {get_param: PublicVirtualInterface} service_config_settings: {} # BEGIN DOCKER SETTINGS puppet_config: config_volume: 'keepalived' puppet_tags: 'file' step_config: | include ::tripleo::profile::base::keepalived config_image: {get_param: DockerKeepalivedConfigImage} kolla_config: /var/lib/kolla/config_files/keepalived.json: command: /usr/sbin/keepalived -nldD | tee -a /var/log/keepalived.log config_files: - source: "/var/lib/kolla/config_files/src/*" dest: "/" merge: true preserve_properties: true docker_config: step_1: keepalived: start_order: 0 image: {get_param: DockerKeepalivedImage} net: host privileged: true restart: always # FIXME: needs to be added to the container first #healthcheck: #test: /openstack/healthcheck volumes: list_concat: - {get_attr: [ContainersCommon, volumes]} - - /var/lib/kolla/config_files/keepalived.json:/var/lib/kolla/config_files/config.json:ro - /var/lib/config-data/puppet-generated/keepalived/:/var/lib/kolla/config_files/src:ro - /var/log/containers/keepalived/:/var/log/:z - /lib/modules/:/lib/modules/:ro - /var/lib/haproxy/:/var/lib/haproxy/:z environment: - KOLLA_CONFIG_STRATEGY=COPY_ALWAYS command: /usr/local/bin/kolla_start host_prep_tasks: - name: Set fact for restarting Keepalived container set_fact: restart_keepalived: {get_param: KeepalivedRestart} - name: Restart Keepalived container shell: "{{container_cli}} restart keepalived" when: restart_keepalived|bool ignore_errors: True - name: load ip_vs module import_role: name: tripleo-module-load vars: modules: - name: ip_vs - name: create persistent directories file: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" with_items: - { 'path': /var/log/containers/keepalived, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/keepalived, 'setype': svirt_sandbox_file_t } - name: keepalived logs readme copy: dest: /var/log/keepalived/readme.txt content: | Log files from keepalived containers can be found under /var/log/containers/keepalived. ignore_errors: true post_upgrade_tasks: - when: step|int == 1 import_role: name: tripleo-docker-rm vars: containers_to_rm: - keepalived