tripleo-heat-templates/deployment/keepalived/keepalived-container-puppet.yaml

heat_template_version: rocky

description: >
  OpenStack containerized Keepalived service  

parameters:
  DockerKeepalivedImage:
    description: image
    type: string
  DockerKeepalivedConfigImage:
    description: The container image to use for the keepalived config_volume
    type: string
  EndpointMap:
    default: {}
    description: Mapping of service endpoint -> protocol. Typically set
                 via parameter_defaults in the resource registry.
    type: json
  ServiceData:
    default: {}
    description: Dictionary packing service data
    type: json
  ServiceNetMap:
    default: {}
    description: Mapping of service_name -> network name. Typically set
                 via parameter_defaults in the resource registry.  This
                 mapping overrides those in ServiceNetMapDefaults.
    type: json
  DefaultPasswords:
    default: {}
    type: json
  RoleName:
    default: ''
    description: Role name on which the service is applied
    type: string
  RoleParameters:
    default: {}
    description: Parameters specific to the role
    type: json
  # TODO(emilien) Remove when Keepalived 2.0.6 is out
  # https://bugs.launchpad.net/tripleo/+bug/1791238
  KeepalivedRestart:
    default: false
    description: Whether or not restart Keepalived. Useful for Undercloud only.
    type: boolean
  ControlVirtualInterface:
    default: ''
    description: >
        Interface where virtual ip will be assigned.  This value will be
        automatically set by the deployment tool.  Overriding here will
        override automatic setting.        
    type: string
  PublicVirtualInterface:
    default: ''
    description: >
        Interface where virtual ip will be assigned.  This value will be
        automatically set by the deployment tool.  Overriding here will
        override automatic setting.        
    type: string
  MonitoringSubscriptionKeepalived:
    default: 'overcloud-keepalived'
    type: string

conditions:
  control_iface_empty: {equals : [{get_param: ControlVirtualInterface}, '']}
  public_iface_empty: {equals : [{get_param: PublicVirtualInterface}, '']}

resources:
  ContainersCommon:
    type: ../containers-common.yaml

outputs:
  role_data:
    description: Role data for the Keepalived role.
    value:
      service_name: keepalived
      monitoring_subscription: {get_param: MonitoringSubscriptionKeepalived}
      config_settings:
        map_merge:
        - tripleo::keepalived:custom_vrrp_script: 'test -S /var/lib/haproxy/stats && echo "show info" | socat /var/lib/haproxy/stats stdio'
        - tripleo::keepalived::firewall_rules:
            '106 keepalived vrrp':
              proto: vrrp
        -
          if:
          - control_iface_empty
          - {}
          - tripleo::keepalived::control_virtual_interface: {get_param: ControlVirtualInterface}
        -
          if:
          - public_iface_empty
          - {}
          - tripleo::keepalived::public_virtual_interface: {get_param: PublicVirtualInterface}
      service_config_settings: {}
      # BEGIN DOCKER SETTINGS
      puppet_config:
        config_volume: 'keepalived'
        puppet_tags: 'file'
        step_config: |
          include ::tripleo::profile::base::keepalived          
        config_image: {get_param: DockerKeepalivedConfigImage}
      kolla_config:
        /var/lib/kolla/config_files/keepalived.json:
          command: "/bin/bash -c $* -- eval exec /usr/sbin/keepalived -nldD &>>/var/log/keepalived.log"
          config_files:
            - source: "/var/lib/kolla/config_files/src/*"
              dest: "/"
              merge: true
              preserve_properties: true
      docker_config:
        step_1:
          keepalived:
            start_order: 0
            image: {get_param: DockerKeepalivedImage}
            net: host
            privileged: true
            restart: always
            # FIXME: needs to be added to the container first
            #healthcheck:
              #test: /openstack/healthcheck
            volumes:
              list_concat:
                - {get_attr: [ContainersCommon, volumes]}
                -
                  - /var/lib/kolla/config_files/keepalived.json:/var/lib/kolla/config_files/config.json:ro
                  - /var/lib/config-data/puppet-generated/keepalived/:/var/lib/kolla/config_files/src:ro
                  - /var/log/containers/keepalived/:/var/log/:z
                  - /lib/modules/:/lib/modules/:ro
                  - /var/lib/haproxy/:/var/lib/haproxy/:z
            environment:
              - KOLLA_CONFIG_STRATEGY=COPY_ALWAYS
            command: /usr/local/bin/kolla_start
      host_prep_tasks:
        - name: Set fact for restarting Keepalived container
          set_fact:
            restart_keepalived: {get_param: KeepalivedRestart}
        - name: Restart Keepalived container
          shell: "{{container_cli}} restart keepalived"
          when: restart_keepalived|bool
          ignore_errors: True
        - name: load ip_vs module
          import_role:
            name: tripleo-module-load
          vars:
            modules:
              - name: ip_vs
        - name: create persistent directories
          file:
            path: "{{ item.path }}"
            state: directory
            setype: "{{ item.setype }}"
          with_items:
            - { 'path': /var/log/containers/keepalived, 'setype': svirt_sandbox_file_t }
            - { 'path': /var/log/keepalived, 'setype': svirt_sandbox_file_t }
        - name: keepalived logs readme
          copy:
            dest: /var/log/keepalived/readme.txt
            content: |
              Log files from keepalived containers can be found under
              /var/log/containers/keepalived.              
          ignore_errors: true
      post_upgrade_tasks:
        - when: step|int == 1
          import_role:
            name: tripleo-docker-rm
          vars:
            containers_to_rm:
              - keepalived