91f06efb3a
When Swift is running in single replica mode, rsync is pretty much useless - there is no counterpart to transfer data. On the undercloud this also prevents misleading error messages if xinetd is running and already using port 873. Change-Id: I7e22dbe287bf9c93438717c08a3ceb1998445b93
727 lines
31 KiB
YAML
727 lines
31 KiB
YAML
heat_template_version: wallaby
|
|
|
|
description: >
|
|
OpenStack containerized Swift Storage services.
|
|
|
|
parameters:
|
|
ContainerSwiftProxyImage:
|
|
description: image
|
|
type: string
|
|
ContainerSwiftAccountImage:
|
|
description: image
|
|
type: string
|
|
ContainerSwiftContainerImage:
|
|
description: image
|
|
type: string
|
|
ContainerSwiftObjectImage:
|
|
description: image
|
|
type: string
|
|
ContainerSwiftConfigImage:
|
|
description: The container image to use for the swift config_volume
|
|
type: string
|
|
EndpointMap:
|
|
default: {}
|
|
description: Mapping of service endpoint -> protocol. Typically set
|
|
via parameter_defaults in the resource registry.
|
|
type: json
|
|
RoleName:
|
|
default: ''
|
|
description: Role name on which the service is applied
|
|
type: string
|
|
RoleParameters:
|
|
default: {}
|
|
description: Parameters specific to the role
|
|
type: json
|
|
ServiceData:
|
|
default: {}
|
|
description: Dictionary packing service data
|
|
type: json
|
|
ServiceNetMap:
|
|
default: {}
|
|
description: Mapping of service_name -> network name. Typically set
|
|
via parameter_defaults in the resource registry. Use
|
|
parameter_merge_strategies to merge it with the defaults.
|
|
type: json
|
|
SwiftRawDisks:
|
|
default: {}
|
|
description: 'A hash of additional raw devices to use as Swift backend (eg. {sdb: {}})'
|
|
type: json
|
|
SwiftReplicas:
|
|
type: number
|
|
default: 3
|
|
description: How many replicas to use in the swift rings.
|
|
SwiftUseLocalDir:
|
|
default: true
|
|
description: 'Use a local directory for Swift storage services when building rings'
|
|
type: boolean
|
|
SwiftContainerSharderEnabled:
|
|
description: Set to True to enable Swift container sharder service
|
|
default: false
|
|
type: boolean
|
|
SwiftMountCheck:
|
|
default: false
|
|
description: Value of mount_check in Swift account/container/object -server.conf
|
|
type: boolean
|
|
SwiftUseNodeDataLookup:
|
|
default: false
|
|
description: Use NodeDataLookup for disk devices in order to use persistent naming
|
|
type: boolean
|
|
SwiftAccountWorkers:
|
|
default: 0
|
|
description: Number of workers for Swift account service.
|
|
type: string
|
|
SwiftContainerWorkers:
|
|
default: 0
|
|
description: Number of workers for Swift account service.
|
|
type: string
|
|
SwiftObjectWorkers:
|
|
default: 0
|
|
description: Number of workers for Swift account service.
|
|
type: string
|
|
DeployIdentifier:
|
|
default: ''
|
|
type: string
|
|
description: >
|
|
Setting this to a unique value will re-run any deployment tasks which
|
|
perform configuration on a Heat stack-update.
|
|
MemcachedTLS:
|
|
default: false
|
|
description: Set to True to enable TLS on Memcached service.
|
|
Because not all services support Memcached TLS, during the
|
|
migration period, Memcached will listen on 2 ports - on the
|
|
port set with MemcachedPort parameter (above) and on 11211,
|
|
without TLS.
|
|
type: boolean
|
|
|
|
# DEPRECATED options for compatibility with overcloud.yaml
|
|
# This should be removed and manipulation of the ControllerServices list
|
|
# used instead, but we need client support for that first
|
|
ControllerEnableSwiftStorage:
|
|
default: true
|
|
description: Whether to enable Swift Storage on the Controller
|
|
type: boolean
|
|
|
|
parameter_groups:
|
|
- label: deprecated
|
|
description: Do not use deprecated params, they will be removed.
|
|
parameters:
|
|
- ControllerEnableSwiftStorage
|
|
|
|
conditions:
|
|
single_replica_mode: {equals: [{get_param: SwiftReplicas}, 1]}
|
|
swift_mount_check:
|
|
or:
|
|
- {get_param: SwiftMountCheck}
|
|
- not:
|
|
equals:
|
|
- get_param: SwiftRawDisks
|
|
- {}
|
|
account_workers_set:
|
|
not: {equals : [{get_param: SwiftAccountWorkers}, '0']}
|
|
container_workers_set:
|
|
not: {equals : [{get_param: SwiftContainerWorkers}, '0']}
|
|
object_workers_set:
|
|
not: {equals : [{get_param: SwiftObjectWorkers}, '0']}
|
|
use_node_data_lookup: {equals : [{get_param: SwiftUseNodeDataLookup}, true]}
|
|
|
|
resources:
|
|
ContainersCommon:
|
|
type: ../containers-common.yaml
|
|
|
|
SwiftBase:
|
|
type: ./swift-base.yaml
|
|
properties:
|
|
EndpointMap: {get_param: EndpointMap}
|
|
ServiceData: {get_param: ServiceData}
|
|
ServiceNetMap: {get_param: ServiceNetMap}
|
|
RoleName: {get_param: RoleName}
|
|
RoleParameters: {get_param: RoleParameters}
|
|
|
|
outputs:
|
|
role_data:
|
|
description: Role data for the swift storage services.
|
|
value:
|
|
service_name: swift_storage
|
|
firewall_rules:
|
|
'123 swift storage':
|
|
dport:
|
|
- 873
|
|
- 6000
|
|
- 6001
|
|
- 6002
|
|
config_settings:
|
|
map_merge:
|
|
- {get_attr: [SwiftBase, role_data, config_settings]}
|
|
# FIXME (cschwede): re-enable this once checks works inside containers
|
|
# swift::storage::all::mount_check: {if: [swift_mount_check, true, false]}
|
|
- swift::storage::all::mount_check: false
|
|
tripleo::profile::base::swift::storage::use_local_dir: {get_param: SwiftUseLocalDir}
|
|
swift::storage::all::incoming_chmod: 'Du=rwx,g=rx,o=rx,Fu=rw,g=r,o=r'
|
|
swift::storage::all::outgoing_chmod: 'Du=rwx,g=rx,o=rx,Fu=rw,g=r,o=r'
|
|
swift::storage::all::account_port: 6002
|
|
swift::storage::all::container_port: 6001
|
|
swift::storage::all::object_port: 6000
|
|
swift::storage::all::object_pipeline:
|
|
- healthcheck
|
|
- recon
|
|
- object-server
|
|
swift::storage::all::container_pipeline:
|
|
- healthcheck
|
|
- recon
|
|
- container-server
|
|
swift::storage::all::account_pipeline:
|
|
- healthcheck
|
|
- recon
|
|
- account-server
|
|
swift::storage::disks::args:
|
|
if:
|
|
- {get_param: SwiftUseNodeDataLookup}
|
|
- {get_param: SwiftRawDisks}
|
|
swift::storage::all::storage_local_net_ip:
|
|
str_replace:
|
|
template:
|
|
"%{hiera('$NETWORK')}"
|
|
params:
|
|
$NETWORK: {get_param: [ServiceNetMap, SwiftStorageNetwork]}
|
|
rsync::server::pid_file: 'UNSET'
|
|
swift::objectexpirer::cache_tls_enabled: {get_param: MemcachedTLS}
|
|
swift::storage::all::account_server_workers:
|
|
if:
|
|
- account_workers_set
|
|
- {get_param: SwiftAccountWorkers}
|
|
swift::storage::all::container_server_workers:
|
|
if:
|
|
- container_workers_set
|
|
- {get_param: SwiftContainerWorkers}
|
|
swift::storage::all::object_server_workers:
|
|
if:
|
|
- object_workers_set
|
|
- {get_param: SwiftObjectWorkers}
|
|
service_config_settings: {}
|
|
# BEGIN DOCKER SETTINGS
|
|
puppet_config:
|
|
config_volume: swift
|
|
puppet_tags: swift_config,swift_container_config,swift_container_sync_realms_config,swift_account_config,swift_object_config,swift_object_expirer_config,rsync::server
|
|
step_config:
|
|
list_join:
|
|
- "\n"
|
|
- - "class xinetd() {}"
|
|
- "define xinetd::service($bind='',$port='',$server='',$server_args='') {}"
|
|
- "include tripleo::profile::base::swift::storage"
|
|
config_image: {get_param: ContainerSwiftConfigImage}
|
|
kolla_config:
|
|
/var/lib/kolla/config_files/swift_account_auditor.json:
|
|
command: /usr/bin/swift-account-auditor /etc/swift/account-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_account_reaper.json:
|
|
command: /usr/bin/swift-account-reaper /etc/swift/account-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_account_replicator.json:
|
|
command: /usr/bin/swift-account-replicator /etc/swift/account-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_account_server.json:
|
|
command: /usr/bin/swift-account-server /etc/swift/account-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_container_auditor.json:
|
|
command: /usr/bin/swift-container-auditor /etc/swift/container-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_container_replicator.json:
|
|
command: /usr/bin/swift-container-replicator /etc/swift/container-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_container_updater.json:
|
|
command: /usr/bin/swift-container-updater /etc/swift/container-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_container_server.json:
|
|
command: /usr/bin/swift-container-server /etc/swift/container-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_container_sharder.json:
|
|
command: /usr/bin/swift-container-sharder /etc/swift/container-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_object_auditor.json:
|
|
command: /usr/bin/swift-object-auditor /etc/swift/object-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_object_expirer.json:
|
|
command: /usr/bin/swift-object-expirer /etc/swift/object-expirer.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_object_replicator.json:
|
|
command: /usr/bin/swift-object-replicator /etc/swift/object-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_object_updater.json:
|
|
command: /usr/bin/swift-object-updater /etc/swift/object-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
/var/lib/kolla/config_files/swift_object_server.json:
|
|
command: /usr/bin/swift-object-server /etc/swift/object-server.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
permissions:
|
|
- path: /var/cache/swift
|
|
owner: swift:swift
|
|
recurse: true
|
|
/var/lib/kolla/config_files/swift_rsync.json:
|
|
command: /usr/bin/rsync --daemon --no-detach --config=/etc/rsyncd.conf
|
|
config_files:
|
|
- source: "/var/lib/kolla/config_files/src/*"
|
|
dest: "/"
|
|
merge: true
|
|
preserve_properties: true
|
|
docker_config:
|
|
step_3:
|
|
# The puppet config sets this up but we don't have a way to mount the named
|
|
# volume during the configuration stage. We just need to create this
|
|
# directory and make sure it's owned by swift.
|
|
swift_setup_srv:
|
|
image: &swift_account_image {get_param: ContainerSwiftAccountImage}
|
|
net: none
|
|
user: root
|
|
command: ['chown', '-R', 'swift:', '/srv/node']
|
|
volumes:
|
|
- /srv/node:/srv/node:z
|
|
environment:
|
|
# NOTE: this should force this container to re-run on each
|
|
# update (scale-out, etc.)
|
|
TRIPLEO_DEPLOY_IDENTIFIER: {get_param: DeployIdentifier}
|
|
step_4:
|
|
map_merge:
|
|
- if:
|
|
- not: single_replica_mode
|
|
- swift_account_auditor:
|
|
image: *swift_account_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_account_auditor.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift:z
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: &kolla_env
|
|
KOLLA_CONFIG_STRATEGY: COPY_ALWAYS
|
|
swift_account_replicator:
|
|
image: *swift_account_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_account_replicator.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_container_auditor:
|
|
image: &swift_container_image {get_param: ContainerSwiftContainerImage}
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_container_auditor.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_container_replicator:
|
|
image: *swift_container_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_container_replicator.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
|
|
swift_object_auditor:
|
|
image: &swift_object_image {get_param: ContainerSwiftObjectImage}
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_object_auditor.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_object_replicator:
|
|
image: *swift_object_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_object_replicator.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_rsync:
|
|
image: *swift_object_image
|
|
net: host
|
|
user: root
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
privileged: false
|
|
cap_add:
|
|
- NET_BIND_SERVICE
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_rsync.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
# /var/cache/swift not needed in this container
|
|
environment: *kolla_env
|
|
-
|
|
swift_account_reaper:
|
|
image: *swift_account_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_account_reaper.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift:z
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_account_server:
|
|
image: *swift_account_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_account_server.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_container_updater:
|
|
image: *swift_container_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_container_updater.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_container_server:
|
|
image: *swift_container_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_container_server.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_object_expirer:
|
|
image: &swift_proxy_image {get_param: ContainerSwiftProxyImage}
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_object_expirer.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_object_updater:
|
|
image: *swift_object_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_object_updater.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
swift_object_server:
|
|
image: *swift_object_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
healthcheck:
|
|
test: /openstack/healthcheck
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
-
|
|
- /var/lib/kolla/config_files/swift_object_server.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
environment: *kolla_env
|
|
- if:
|
|
- {get_param: SwiftContainerSharderEnabled}
|
|
- swift_container_sharder:
|
|
image: *swift_container_image
|
|
net: host
|
|
user: swift
|
|
restart: always
|
|
volumes:
|
|
list_concat:
|
|
- {get_attr: [ContainersCommon, volumes]}
|
|
- - /var/lib/kolla/config_files/swift_container_sharder.json:/var/lib/kolla/config_files/config.json:ro
|
|
- /var/lib/config-data/puppet-generated/swift:/var/lib/kolla/config_files/src:ro
|
|
- /srv/node:/srv/node
|
|
- /dev:/dev
|
|
- /var/cache/swift:/var/cache/swift
|
|
- /var/log/containers/swift:/var/log/swift:z
|
|
|
|
host_prep_tasks:
|
|
# NOTE: we can't set fcontext for swift locations since they are
|
|
# already set in openstack-selinux package. In order to work around
|
|
# this specific case, the following change is being pushed:
|
|
# https://github.com/redhat-openstack/openstack-selinux/pull/73
|
|
- name: create persistent directories
|
|
file:
|
|
path: "{{ item.path }}"
|
|
state: directory
|
|
setype: "{{ item.setype }}"
|
|
mode: "{{ item.mode|default(omit) }}"
|
|
with_items:
|
|
- { 'path': /srv/node, 'setype': container_file_t }
|
|
- { 'path': /var/cache/swift, 'setype': container_file_t }
|
|
- { 'path': /var/log/containers/swift, 'setype': container_file_t, 'mode': '0750' }
|
|
- name: Set swift_use_local_disks fact
|
|
set_fact:
|
|
swift_use_local_disks: {get_param: SwiftUseLocalDir}
|
|
- name: Set use_node_data_lookup fact
|
|
set_fact:
|
|
use_node_data_lookup: {get_param: SwiftUseNodeDataLookup}
|
|
- name: Create Swift d1 directory if needed
|
|
file:
|
|
path: "/srv/node/d1"
|
|
state: directory
|
|
when: swift_use_local_disks
|
|
- name: Set fact for SwiftRawDisks
|
|
set_fact:
|
|
swift_raw_disks: {get_param: SwiftRawDisks}
|
|
when: not use_node_data_lookup|bool
|
|
- name: Get hiera swift::storage::disks::args
|
|
shell: hiera -c /etc/puppet/hiera.yaml swift::storage::disks::args | sed =e 's/=>/:/g'
|
|
register: hiera_output
|
|
when: use_node_data_lookup|bool
|
|
- name: Set fact for swift_raw_disks
|
|
set_fact:
|
|
swift_raw_disks: "{{ hiera_output.stdout | from_json }}"
|
|
when: use_node_data_lookup|bool
|
|
- name: Format SwiftRawDisks
|
|
community.general.filesystem:
|
|
fstype: xfs
|
|
dev: "{{ swift_raw_disks[item]['base_dir']|default('/dev') }}/{{ item }}"
|
|
opts: -f -i size=1024
|
|
with_items: "{{ swift_raw_disks }}"
|
|
when: swift_raw_disks|length > 0
|
|
- name: Refresh facts if SwiftRawDisks is set to get uuids if newly created partitions
|
|
setup:
|
|
gather_subset:
|
|
- '!all'
|
|
- '!min'
|
|
- 'hardware'
|
|
filter: 'ansible_device_links'
|
|
when: swift_raw_disks|length > 0
|
|
- name: Mount devices defined in SwiftRawDisks
|
|
mount:
|
|
name: /srv/node/{{ item }}
|
|
src: "{% if lsblk.results['uuids'][item] is defined %}UUID={{ ansible_facts['device_links']['uuids'][item][0] }}{% else %}{{ swift_raw_disks[item]['base_dir']|default('/dev') }}/{{ item }}{% endif %}"
|
|
fstype: xfs
|
|
opts: noatime
|
|
state: mounted
|
|
with_items: "{{ swift_raw_disks }}"
|
|
when: swift_raw_disks|length > 0
|
|
deploy_steps_tasks:
|
|
- name: Configure rsyslog for swift-storage
|
|
when:
|
|
- step|int == 1
|
|
- swift_logconfig is not defined
|
|
- swift_rsyslog_config is not defined
|
|
block:
|
|
- name: Check if rsyslog exists
|
|
systemd:
|
|
name: rsyslog
|
|
register: swift_rsyslog_config
|
|
- block:
|
|
- name: Forward logging to swift.log file
|
|
copy:
|
|
content: |
|
|
# Fix for https://bugs.launchpad.net/tripleo/+bug/1776180
|
|
local2.* /var/log/containers/swift/swift.log
|
|
& stop
|
|
dest: /etc/rsyslog.d/openstack-swift.conf
|
|
register: swift_logconfig
|
|
- name: Restart rsyslogd service after logging conf change
|
|
service:
|
|
name: rsyslog
|
|
state: restarted
|
|
when:
|
|
- swift_logconfig is changed
|
|
when:
|
|
- swift_rsyslog_config is defined
|
|
- swift_rsyslog_config.status is defined
|
|
- swift_rsyslog_config.status.ActiveState == 'active'
|
|
- name: Run kolla_set_configs to copy ring files
|
|
when: step|int == 5
|
|
shell: "{{ container_cli }} exec -u root {{ item }} /usr/local/bin/kolla_set_configs"
|
|
become: true
|
|
register: kolla_set_configs_result
|
|
failed_when:
|
|
- kolla_set_configs_result.rc is defined # do not fail in dry run mode
|
|
- kolla_set_configs_result.rc not in [0, 125] # ignore containers that are not running
|
|
with_items:
|
|
- swift_account_auditor
|
|
- swift_account_reaper
|
|
- swift_account_replicator
|
|
- swift_account_server
|
|
- swift_container_auditor
|
|
- swift_container_replicator
|
|
- swift_container_server
|
|
- swift_container_updater
|
|
- swift_object_auditor
|
|
- swift_object_expirer
|
|
- swift_object_replicator
|
|
- swift_object_server
|
|
- swift_object_updater
|
|
update_tasks:
|
|
- name: Check swift containers log folder/symlink exists
|
|
stat:
|
|
path: /var/log/containers/swift
|
|
register: swift_log_link
|
|
- name: Delete if symlink
|
|
file:
|
|
path: /var/log/containers/swift
|
|
state: absent
|
|
when: swift_log_link.stat.islnk is defined and swift_log_link.stat.islnk
|