starlingx
/
config
Code Issues Proposed changes
config/puppet-manifests/src/modules/platform/manifests/sm.pp

913 lines
42 KiB
Puppet
Raw Blame History

class platform::sm::params (
$mgmt_ip_multicast = undef,
$cluster_host_ip_multicast = undef,
) { }
class platform::sm
inherits ::platform::sm::params {
include ::platform::params
$controller_0_hostname = $::platform::params::controller_0_hostname
$controller_1_hostname = $::platform::params::controller_1_hostname
$platform_sw_version = $::platform::params::software_version
$region_config = $::platform::params::region_config
$region_2_name = $::platform::params::region_2_name
$system_mode = $::platform::params::system_mode
$system_type = $::platform::params::system_type
include ::platform::network::pxeboot::params
if $::platform::network::pxeboot::params::interface_name {
$pxeboot_ip_interface = $::platform::network::pxeboot::params::interface_name
} else {
# Fallback to using the management interface for PXE boot network
$pxeboot_ip_interface = $::platform::network::mgmt::params::interface_name
}
$pxeboot_ip_param_ip = $::platform::network::pxeboot::params::controller_address
$pxeboot_ip_param_mask = $::platform::network::pxeboot::params::subnet_prefixlen
include ::platform::network::mgmt::params
$mgmt_ip_interface = $::platform::network::mgmt::params::interface_name
$mgmt_ip_param_ip = $::platform::network::mgmt::params::controller_address
$mgmt_ip_param_mask = $::platform::network::mgmt::params::subnet_prefixlen
include ::platform::network::cluster_host::params
$cluster_host_ip_interface = $::platform::network::cluster_host::params::interface_name
$cluster_host_ip_param_ip = $::platform::network::cluster_host::params::controller_address
$cluster_host_ip_param_mask = $::platform::network::cluster_host::params::subnet_prefixlen
include ::platform::network::oam::params
$oam_ip_interface = $::platform::network::oam::params::interface_name
$oam_ip_param_ip = $::platform::network::oam::params::controller_address
$oam_ip_param_mask = $::platform::network::oam::params::subnet_prefixlen
include ::platform::drbd::cgcs::params
$cgcs_drbd_resource = $::platform::drbd::cgcs::params::resource_name
$cgcs_fs_device = $::platform::drbd::cgcs::params::device
$cgcs_fs_directory = $::platform::drbd::cgcs::params::mountpoint
include ::platform::drbd::pgsql::params
$pg_drbd_resource = $::platform::drbd::pgsql::params::resource_name
$pg_fs_device = $::platform::drbd::pgsql::params::device
$pg_fs_directory = $::platform::drbd::pgsql::params::mountpoint
$pg_data_dir = "${pg_fs_directory}/${platform_sw_version}"
include ::platform::drbd::platform::params
$platform_drbd_resource = $::platform::drbd::platform::params::resource_name
$platform_fs_device = $::platform::drbd::platform::params::device
$platform_fs_directory = $::platform::drbd::platform::params::mountpoint
include ::platform::drbd::rabbit::params
$rabbit_drbd_resource = $::platform::drbd::rabbit::params::resource_name
$rabbit_fs_device = $::platform::drbd::rabbit::params::device
$rabbit_fs_directory = $::platform::drbd::rabbit::params::mountpoint
include ::platform::drbd::extension::params
$extension_drbd_resource = $::platform::drbd::extension::params::resource_name
$extension_fs_device = $::platform::drbd::extension::params::device
$extension_fs_directory = $::platform::drbd::extension::params::mountpoint
include ::platform::drbd::patch_vault::params
$drbd_patch_enabled = $::platform::drbd::patch_vault::params::service_enabled
$patch_drbd_resource = $::platform::drbd::patch_vault::params::resource_name
$patch_fs_device = $::platform::drbd::patch_vault::params::device
$patch_fs_directory = $::platform::drbd::patch_vault::params::mountpoint
include ::platform::drbd::etcd::params
$etcd_drbd_resource = $::platform::drbd::etcd::params::resource_name
$etcd_fs_device = $::platform::drbd::etcd::params::device
$etcd_fs_directory = $::platform::drbd::etcd::params::mountpoint
include ::platform::drbd::dockerdistribution::params
$dockerdistribution_drbd_resource = $::platform::drbd::dockerdistribution::params::resource_name
$dockerdistribution_fs_device = $::platform::drbd::dockerdistribution::params::device
$dockerdistribution_fs_directory = $::platform::drbd::dockerdistribution::params::mountpoint
include ::platform::helm::repository::params
$helmrepo_fs_source_dir = $::platform::helm::repository::params::source_helm_repo_dir
$helmrepo_fs_target_dir = $::platform::helm::repository::params::target_helm_repo_dir
include ::platform::drbd::cephmon::params
$cephmon_drbd_resource = $::platform::drbd::cephmon::params::resource_name
$cephmon_fs_device = $::platform::drbd::cephmon::params::device
$cephmon_fs_directory = $::platform::drbd::cephmon::params::mountpoint
include ::openstack::keystone::params
$keystone_api_version = $::openstack::keystone::params::api_version
$keystone_identity_uri = $::openstack::keystone::params::identity_uri
$keystone_host_url = $::openstack::keystone::params::host_url
$keystone_region = $::openstack::keystone::params::region_name
include ::platform::amqp::params
$amqp_server_port = $::platform::amqp::params::port
$rabbit_node_name = $::platform::amqp::params::node
$rabbit_mnesia_base = "/var/lib/rabbitmq/${platform_sw_version}/mnesia"
include ::platform::ldap::params
$ldapserver_remote = $::platform::ldap::params::ldapserver_remote
# This variable is used also in create_sm_db.sql.
# please change that one as well when modifying this variable
$rabbit_pid = '/var/run/rabbitmq/rabbitmq.pid'
$rabbitmq_server = '/usr/lib/rabbitmq/bin/rabbitmq-server'
$rabbitmqctl = '/usr/lib/rabbitmq/bin/rabbitmqctl'
include ::platform::mtce::params
$sm_client_port = $::platform::mtce::params::sm_client_port
$sm_server_port = $::platform::mtce::params::sm_server_port
############ NFS Parameters ################
# Platform NFS network is over the management network
$platform_nfs_ip_interface = $::platform::network::mgmt::params::interface_name
$platform_nfs_ip_param_ip = $::platform::network::mgmt::params::platform_nfs_address
$platform_nfs_ip_param_mask = $::platform::network::mgmt::params::subnet_prefixlen
$platform_nfs_ip_network_url = $::platform::network::mgmt::params::subnet_network_url
# CGCS NFS network is over the infrastructure network if configured
$cgcs_nfs_ip_interface = $::platform::network::mgmt::params::interface_name
$cgcs_nfs_ip_param_ip = $::platform::network::mgmt::params::cgcs_nfs_address
$cgcs_nfs_ip_network_url = $::platform::network::mgmt::params::subnet_network_url
$cgcs_nfs_ip_param_mask = $::platform::network::mgmt::params::subnet_prefixlen
$platform_nfs_subnet_url = "${platform_nfs_ip_network_url}/${platform_nfs_ip_param_mask}"
$cgcs_nfs_subnet_url = "${cgcs_nfs_ip_network_url}/${cgcs_nfs_ip_param_mask}"
# lint:ignore:140chars
$nfs_server_mgmt_exports = "${cgcs_nfs_subnet_url}:${cgcs_fs_directory},${platform_nfs_subnet_url}:${platform_fs_directory},${platform_nfs_subnet_url}:${extension_fs_directory}"
$nfs_server_mgmt_mounts = "${cgcs_fs_device}:${cgcs_fs_directory},${platform_fs_device}:${platform_fs_directory},${extension_fs_device}:${extension_fs_directory}"
# lint:endignore:140chars
################## Openstack Parameters ######################
# Keystone
if $region_config {
$os_mgmt_ip = $keystone_identity_uri
$os_keystone_auth_url = "${os_mgmt_ip}/${keystone_api_version}"
$os_region_name = $region_2_name
} else {
$os_auth_ip = $keystone_host_url
$os_keystone_auth_url = "http://${os_auth_ip}:5000/${keystone_api_version}"
$os_region_name = $keystone_region
}
# Barbican
include ::openstack::barbican::params
$barbican_enabled = $::openstack::barbican::params::service_enabled
$ost_cl_ctrl_host = $::platform::network::mgmt::params::controller_address_url
include ::platform::client::params
$os_username = $::platform::client::params::admin_username
$os_project_name = 'admin'
$os_auth_url = $os_keystone_auth_url
$system_url = "http://${ost_cl_ctrl_host}:6385"
$os_user_domain_name = $::platform::client::params::admin_user_domain
$os_project_domain_name = $::platform::client::params::admin_project_domain
# Ceph-Rados-Gateway
include ::platform::ceph::params
$ceph_configured = $::platform::ceph::params::service_enabled
if $system_mode == 'simplex' {
$hostunit = '0'
$management_my_unit_ip = $::platform::network::mgmt::params::controller0_address
$oam_my_unit_ip = $::platform::network::oam::params::controller_address
$cluster_host_my_unit_ip = $::platform::network::cluster_host::params::controller_address
} else {
case $::hostname {
$controller_0_hostname: {
$hostunit = '0'
$management_my_unit_ip = $::platform::network::mgmt::params::controller0_address
$management_peer_unit_ip = $::platform::network::mgmt::params::controller1_address
$oam_my_unit_ip = $::platform::network::oam::params::controller0_address
$oam_peer_unit_ip = $::platform::network::oam::params::controller1_address
$cluster_host_my_unit_ip = $::platform::network::cluster_host::params::controller0_address
$cluster_host_peer_unit_ip = $::platform::network::cluster_host::params::controller1_address
}
$controller_1_hostname: {
$hostunit = '1'
$management_my_unit_ip = $::platform::network::mgmt::params::controller1_address
$management_peer_unit_ip = $::platform::network::mgmt::params::controller0_address
$oam_my_unit_ip = $::platform::network::oam::params::controller1_address
$oam_peer_unit_ip = $::platform::network::oam::params::controller0_address
$cluster_host_my_unit_ip = $::platform::network::cluster_host::params::controller1_address
$cluster_host_peer_unit_ip = $::platform::network::cluster_host::params::controller0_address
}
default: {
$hostunit = '2'
$management_my_unit_ip = undef
$management_peer_unit_ip = undef
$oam_my_unit_ip = undef
$oam_peer_unit_ip = undef
$infra_my_unit_ip = undef
$infra_peer_unit_ip = undef
}
}
}
# Add a shell for the postgres. By default WRL sets the shell to /bin/false.
user { 'postgres':
shell => '/bin/sh'
}
# lint:ignore:140chars
if str2bool($::is_virtual) {
exec { 'Configure sm process priority':
command => 'sm-configure system --sm_process_priority -10',
}
}
if $system_mode == 'simplex' {
exec { 'Deprovision oam-ip service group member':
command => 'sm-deprovision service-group-member oam-services oam-ip',
}
-> exec { 'Deprovision oam-ip service':
command => 'sm-deprovision service oam-ip',
}
exec { 'Configure OAM Interface':
command => "sm-configure interface controller oam-interface \"\" ${oam_my_unit_ip} 2222 2223 \"\" 2222 2223",
}
exec { 'Configure Management Interface':
command => "sm-configure interface controller management-interface ${mgmt_ip_multicast} ${management_my_unit_ip} 2222 2223 \"\" 2222 2223",
}
exec { 'Configure Cluster Host Interface':
command => "sm-configure interface controller cluster-host-interface ${cluster_host_ip_multicast} ${cluster_host_my_unit_ip} 2222 2223 \"\" 2222 2223",
}
} else {
exec { 'Configure OAM Interface':
command => "sm-configure interface controller oam-interface \"\" ${oam_my_unit_ip} 2222 2223 ${oam_peer_unit_ip} 2222 2223",
}
exec { 'Configure Management Interface':
command => "sm-configure interface controller management-interface ${mgmt_ip_multicast} ${management_my_unit_ip} 2222 2223 ${management_peer_unit_ip} 2222 2223",
}
exec { 'Configure Cluster Host Interface':
command => "sm-configure interface controller cluster-host-interface ${cluster_host_ip_multicast} ${cluster_host_my_unit_ip} 2222 2223 ${cluster_host_peer_unit_ip} 2222 2223",
}
}
exec { 'Configure OAM IP':
command => "sm-configure service_instance oam-ip oam-ip \"ip=${oam_ip_param_ip},cidr_netmask=${oam_ip_param_mask},nic=${oam_ip_interface},arp_count=7\"",
}
if $system_mode == 'duplex-direct' or $system_mode == 'simplex' {
exec { 'Configure Management IP':
command => "sm-configure service_instance management-ip management-ip \"ip=${mgmt_ip_param_ip},cidr_netmask=${mgmt_ip_param_mask},nic=${mgmt_ip_interface},arp_count=7,dc=yes\"",
}
} else {
exec { 'Configure Management IP':
command => "sm-configure service_instance management-ip management-ip \"ip=${mgmt_ip_param_ip},cidr_netmask=${mgmt_ip_param_mask},nic=${mgmt_ip_interface},arp_count=7\"",
}
}
if $system_mode == 'duplex-direct' or $system_mode == 'simplex' {
exec { 'Configure Cluster Host IP service instance':
command =>
"sm-configure service_instance cluster-host-ip cluster-host-ip \"ip=${cluster_host_ip_param_ip},cidr_netmask=${cluster_host_ip_param_mask},nic=${cluster_host_ip_interface},arp_count=7,dc=yes\"",
}
} else {
exec { 'Configure Cluster Host IP service instance':
command =>
"sm-configure service_instance cluster-host-ip cluster-host-ip \"ip=${cluster_host_ip_param_ip},cidr_netmask=${cluster_host_ip_param_mask},nic=${cluster_host_ip_interface},arp_count=7\"",
}
}
exec { 'Configure sm server and client port':
command => "sm-configure system --sm_client_port=${sm_client_port} --sm_server_port=${sm_server_port}",
}
# Create the PXEBoot IP service if it is configured
if str2bool($::is_initial_config) {
exec { 'Configure PXEBoot IP service in SM (service-group-member pxeboot-ip)':
command => 'sm-provision service-group-member controller-services pxeboot-ip',
}
-> exec { 'Configure PXEBoot IP service in SM (service pxeboot-ip)':
command => 'sm-provision service pxeboot-ip',
}
}
if $system_mode == 'duplex-direct' or $system_mode == 'simplex' {
exec { 'Configure PXEBoot IP':
command => "sm-configure service_instance pxeboot-ip pxeboot-ip \"ip=${pxeboot_ip_param_ip},cidr_netmask=${pxeboot_ip_param_mask},nic=${pxeboot_ip_interface},arp_count=7,dc=yes\"",
}
} else {
exec { 'Configure PXEBoot IP':
command => "sm-configure service_instance pxeboot-ip pxeboot-ip \"ip=${pxeboot_ip_param_ip},cidr_netmask=${pxeboot_ip_param_mask},nic=${pxeboot_ip_interface},arp_count=7\"",
}
}
exec { 'Configure Postgres DRBD':
command => "sm-configure service_instance drbd-pg drbd-pg:${hostunit} \"drbd_resource=${pg_drbd_resource}\"",
}
exec { 'Configure Postgres FileSystem':
command => "sm-configure service_instance pg-fs pg-fs \"device=${pg_fs_device},directory=${pg_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure Postgres':
command => "sm-configure service_instance postgres postgres \"pgctl=/usr/bin/pg_ctl,pgdata=${pg_data_dir}\"",
}
exec { 'Configure Rabbit DRBD':
command => "sm-configure service_instance drbd-rabbit drbd-rabbit:${hostunit} \"drbd_resource=${rabbit_drbd_resource}\"",
}
exec { 'Configure Rabbit FileSystem':
command => "sm-configure service_instance rabbit-fs rabbit-fs \"device=${rabbit_fs_device},directory=${rabbit_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure Rabbit':
command => "sm-configure service_instance rabbit rabbit \"server=${rabbitmq_server},ctl=${rabbitmqctl},pid_file=${rabbit_pid},nodename=${rabbit_node_name},mnesia_base=${rabbit_mnesia_base},ip=${mgmt_ip_param_ip}\"",
}
exec { 'Provision Docker Distribution FS in SM (service-group-member dockerdistribution-fs)':
command => 'sm-provision service-group-member controller-services dockerdistribution-fs',
}
-> exec { 'Provision Docker Distribution FS in SM (service dockerdistribution-fs)':
command => 'sm-provision service dockerdistribution-fs',
}
-> exec { 'Provision Docker Distribution DRBD in SM (service-group-member drbd-dockerdistribution)':
command => 'sm-provision service-group-member controller-services drbd-dockerdistribution',
}
-> exec { 'Provision Docker Distribution DRBD in SM (service drbd-dockerdistribution)':
command => 'sm-provision service drbd-dockerdistribution',
}
-> exec { 'Configure Docker Distribution DRBD':
command => "sm-configure service_instance drbd-dockerdistribution drbd-dockerdistribution:${hostunit} \"drbd_resource=${dockerdistribution_drbd_resource}\"",
}
-> exec { 'Configure Docker Distribution FileSystem':
command => "sm-configure service_instance dockerdistribution-fs dockerdistribution-fs \"device=${dockerdistribution_fs_device},directory=${dockerdistribution_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure CGCS DRBD':
command => "sm-configure service_instance drbd-cgcs drbd-cgcs:${hostunit} drbd_resource=${cgcs_drbd_resource}",
}
exec { 'Configure CGCS FileSystem':
command => "sm-configure service_instance cgcs-fs cgcs-fs \"device=${cgcs_fs_device},directory=${cgcs_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure CGCS Export FileSystem':
command => "sm-configure service_instance cgcs-export-fs cgcs-export-fs \"fsid=1,directory=${cgcs_fs_directory},options=rw,sync,no_root_squash,no_subtree_check,clientspec=${cgcs_nfs_subnet_url},unlock_on_stop=true\"",
}
exec { 'Configure Extension DRBD':
command => "sm-configure service_instance drbd-extension drbd-extension:${hostunit} \"drbd_resource=${extension_drbd_resource}\"",
}
exec { 'Configure Extension FileSystem':
command => "sm-configure service_instance extension-fs extension-fs \"device=${extension_fs_device},directory=${extension_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure Extension Export FileSystem':
command => "sm-configure service_instance extension-export-fs extension-export-fs \"fsid=1,directory=${extension_fs_directory},options=rw,sync,no_root_squash,no_subtree_check,clientspec=${platform_nfs_subnet_url},unlock_on_stop=true\"",
}
if $drbd_patch_enabled {
exec { 'Configure Patch-vault DRBD':
command => "sm-configure service_instance drbd-patch-vault drbd-patch-vault:${hostunit} \"drbd_resource=${patch_drbd_resource}\"",
}
exec { 'Configure Patch-vault FileSystem':
command => "sm-configure service_instance patch-vault-fs patch-vault-fs \"device=${patch_fs_device},directory=${patch_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
}
# Configure helm chart repository
exec { 'Provision Helm Chart Repository FS in SM (service-group-member helmrepository-fs)':
command => 'sm-provision service-group-member controller-services helmrepository-fs',
}
-> exec { 'Provision Helm Chart Repository FS in SM (service helmrepository-fs)':
command => 'sm-provision service helmrepository-fs',
}
-> exec { 'Configure Helm Chart Repository FileSystem':
command => "sm-configure service_instance helmrepository-fs helmrepository-fs \"device=${helmrepo_fs_source_dir},directory=${helmrepo_fs_target_dir},options=bind,noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure ETCD DRBD':
command => "sm-configure service_instance drbd-etcd drbd-etcd:${hostunit} drbd_resource=${etcd_drbd_resource}",
}
exec { 'Configure ETCD DRBD FileSystem':
command => "sm-configure service_instance etcd-fs etcd-fs \"device=${etcd_fs_device},directory=${etcd_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
if $system_mode == 'duplex-direct' or $system_mode == 'simplex' {
exec { 'Configure CGCS NFS':
command => "sm-configure service_instance cgcs-nfs-ip cgcs-nfs-ip \"ip=${cgcs_nfs_ip_param_ip},cidr_netmask=${cgcs_nfs_ip_param_mask},nic=${cgcs_nfs_ip_interface},arp_count=7,dc=yes\"",
}
} else {
exec { 'Configure CGCS NFS':
command => "sm-configure service_instance cgcs-nfs-ip cgcs-nfs-ip \"ip=${cgcs_nfs_ip_param_ip},cidr_netmask=${cgcs_nfs_ip_param_mask},nic=${cgcs_nfs_ip_interface},arp_count=7\"",
}
}
# TODO: region code needs to be revisited
if $region_config {
# In a default Multi-Region configuration, Keystone is running as a
# shared service in the Primary Region so need to deprovision that
# service in all non-Primary Regions.
# However in the case of Distributed Cloud Multi-Region configuration,
# each Subcloud is running its own Keystone
if $::platform::params::distributed_cloud_role =='subcloud' {
$configure_keystone = true
# Deprovision Horizon when running as a subcloud
exec { 'Deprovision OpenStack - Horizon (service-group-member)':
command => 'sm-deprovision service-group-member web-services horizon',
}
-> exec { 'Deprovision OpenStack - Horizon (service)':
command => 'sm-deprovision service horizon',
}
} else {
exec { 'Deprovision OpenStack - Keystone (service-group-member)':
command => 'sm-deprovision service-group-member cloud-services keystone',
}
-> exec { 'Deprovision OpenStack - Keystone (service)':
command => 'sm-deprovision service keystone',
}
$configure_keystone = false
}
} else {
$configure_keystone = true
}
if $configure_keystone {
exec { 'Configure OpenStack - Keystone':
command => "sm-configure service_instance keystone keystone \"config=/etc/keystone/keystone.conf,user=root,os_username=${os_username},os_project_name=${os_project_name},os_user_domain_name=${os_user_domain_name},os_project_domain_name=${os_project_domain_name},os_auth_url=${os_auth_url}, \"",
}
}
# Barbican
if $barbican_enabled {
exec { 'Configure OpenStack - Barbican API':
command => "sm-configure service_instance barbican-api barbican-api \"config=/etc/barbican/barbican.conf\"",
}
exec { 'Configure OpenStack - Barbican Keystone Listener':
command => "sm-configure service_instance barbican-keystone-listener barbican-keystone-listener \"config=/etc/barbican/barbican.conf\"",
}
exec { 'Configure OpenStack - Barbican Worker':
command => "sm-configure service_instance barbican-worker barbican-worker \"config=/etc/barbican/barbican.conf\"",
}
}
exec { 'Configure NFS Management':
command => "sm-configure service_instance nfs-mgmt nfs-mgmt \"exports=${nfs_server_mgmt_exports},mounts=${nfs_server_mgmt_mounts}\"",
}
exec { 'Configure Platform DRBD':
command => "sm-configure service_instance drbd-platform drbd-platform:${hostunit} \"drbd_resource=${platform_drbd_resource}\"",
}
exec { 'Configure Platform FileSystem':
command => "sm-configure service_instance platform-fs platform-fs \"device=${platform_fs_device},directory=${platform_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
exec { 'Configure Platform Export FileSystem':
command => "sm-configure service_instance platform-export-fs platform-export-fs \"fsid=0,directory=${platform_fs_directory},options=rw,sync,no_root_squash,no_subtree_check,clientspec=${platform_nfs_subnet_url},unlock_on_stop=true\"",
}
# etcd
exec { 'Configure ETCD':
command => "sm-configure service_instance etcd etcd \"config=/etc/etcd/etcd.conf,user=root\"",
}
# Docker Distribution
exec { 'Configure Docker Distribution':
command => "sm-configure service_instance docker-distribution docker-distribution \"\"",
}
# Docker Registry Token Server
exec { 'Configure Docker Registry Token Server':
command => "sm-configure service_instance registry-token-server registry-token-server \"\"",
}
if $system_mode == 'duplex-direct' or $system_mode == 'simplex' {
exec { 'Configure Platform NFS':
command => "sm-configure service_instance platform-nfs-ip platform-nfs-ip \"ip=${platform_nfs_ip_param_ip},cidr_netmask=${platform_nfs_ip_param_mask},nic=${mgmt_ip_interface},arp_count=7,dc=yes\"",
}
} else {
exec { 'Configure Platform NFS':
command => "sm-configure service_instance platform-nfs-ip platform-nfs-ip \"ip=${platform_nfs_ip_param_ip},cidr_netmask=${platform_nfs_ip_param_mask},nic=${mgmt_ip_interface},arp_count=7\"",
}
}
exec { 'Configure System Inventory API':
command => "sm-configure service_instance sysinv-inv sysinv-inv \"dbg=false,os_username=${os_username},os_project_name=${os_project_name},os_user_domain_name=${os_user_domain_name},os_project_domain_name=${os_project_domain_name},os_auth_url=${os_auth_url},os_region_name=${os_region_name},system_url=${system_url}\"",
}
exec { 'Configure System Inventory Conductor':
command => "sm-configure service_instance sysinv-conductor sysinv-conductor \"dbg=false\"",
}
exec { 'Configure Maintenance Agent':
command => "sm-configure service_instance mtc-agent mtc-agent \"state=active,logging=true,mode=normal,dbg=false\"",
}
exec { 'Configure DNS Mask':
command => "sm-configure service_instance dnsmasq dnsmasq \"\"",
}
exec { 'Configure Fault Manager':
command => "sm-configure service_instance fm-mgr fm-mgr \"\"",
}
exec { 'Configure Open LDAP':
command => "sm-configure service_instance open-ldap open-ldap \"\"",
}
if $system_mode == 'duplex-direct' or $system_mode == 'duplex' {
exec { 'Configure System Mode':
command => "sm-configure system --cpe_mode ${system_mode}",
}
}
if $system_mode == 'simplex' {
exec { 'Configure oam-service redundancy model':
command => "sm-configure service_group yes controller oam-services N 1 0 \"\" directory-services",
}
exec { 'Configure controller-services redundancy model':
command => "sm-configure service_group yes controller controller-services N 1 0 \"\" directory-services",
}
exec { 'Configure cloud-services redundancy model':
command => "sm-configure service_group yes controller cloud-services N 1 0 \"\" directory-services",
}
exec { 'Configure vim-services redundancy model':
command => "sm-configure service_group yes controller vim-services N 1 0 \"\" directory-services",
}
exec { 'Configure patching-services redundancy model':
command => "sm-configure service_group yes controller patching-services N 1 0 \"\" \"\"",
}
exec { 'Configure directory-services redundancy model':
command => "sm-configure service_group yes controller directory-services N 1 0 \"\" \"\"",
}
exec { 'Configure web-services redundancy model':
command => "sm-configure service_group yes controller web-services N 1 0 \"\" \"\"",
}
exec { 'Configure storage-services redundancy model':
command => "sm-configure service_group yes controller storage-services N 1 0 \"\" \"\"",
}
exec { 'Configure storage-monitoring-services redundancy model':
command => "sm-configure service_group yes controller storage-monitoring-services N 1 0 \"\" \"\"",
}
}
exec { 'Provision extension-fs (service-group-member)':
command => 'sm-provision service-group-member controller-services extension-fs',
}
-> exec { 'Provision extension-fs (service)':
command => 'sm-provision service extension-fs',
}
-> exec { 'Provision drbd-extension (service-group-member)':
command => 'sm-provision service-group-member controller-services drbd-extension',
}
-> exec { 'Provision drbd-extension (service)':
command => 'sm-provision service drbd-extension',
}
-> exec { 'Provision extension-export-fs (service-group-member)':
command => 'sm-provision service-group-member controller-services extension-export-fs',
}
-> exec { 'Provision extension-export-fs (service)':
command => 'sm-provision service extension-export-fs',
}
if $drbd_patch_enabled {
exec { 'Provision patch-vault-fs (service-group-member)':
command => 'sm-provision service-group-member controller-services patch-vault-fs',
}
-> exec { 'Provision patch-vault-fs (service)':
command => 'sm-provision service patch-vault-fs',
}
-> exec { 'Provision drbd-patch-vault (service-group-member)':
command => 'sm-provision service-group-member controller-services drbd-patch-vault',
}
-> exec { 'Provision drbd-patch-vault (service)':
command => 'sm-provision service drbd-patch-vault',
}
}
# Configure ETCD for Kubernetes
exec { 'Provision etcd-fs (service-group-member)':
command => 'sm-provision service-group-member controller-services etcd-fs',
}
-> exec { 'Provision etcd-fs (service)':
command => 'sm-provision service etcd-fs',
}
-> exec { 'Provision drbd-etcd (service-group-member)':
command => 'sm-provision service-group-member controller-services drbd-etcd',
}
-> exec { 'Provision drbd-etcd (service)':
command => 'sm-provision service drbd-etcd',
}
-> exec { 'Provision ETCD (service-group-member)':
command => 'sm-provision service-group-member controller-services etcd',
}
-> exec { 'Provision ETCD (service)':
command => 'sm-provision service etcd',
}
# Configure dbmon for AIO duplex and systemcontroller
if ($::platform::params::distributed_cloud_role =='systemcontroller') or
($system_type == 'All-in-one' and 'duplex' in $system_mode) {
exec { 'Provision dmon (service-group-member)':
command => 'sm-provision service-group-member cloud-services dbmon',
}
-> exec { 'Provision dbmon (service)':
command => 'sm-provision service dbmon',
}
}
# Configure Docker Distribution
exec { 'Provision Docker Distribution (service-group-member)':
command => 'sm-provision service-group-member controller-services docker-distribution',
}
-> exec { 'Provision Docker Distribution (service)':
command => 'sm-provision service docker-distribution',
}
# Configure Docker Registry Token Server
exec { 'Provision Docker Registry Token Server (service-group-member)':
command => 'sm-provision service-group-member controller-services registry-token-server',
}
-> exec { 'Provision Docker Registry Token Server (service)':
command => 'sm-provision service registry-token-server',
}
# Barbican
if $barbican_enabled {
exec { 'Provision OpenStack - Barbican API (service-group-member)':
command => 'sm-provision service-group-member cloud-services barbican-api',
}
-> exec { 'Provision OpenStack - Barbican API (service)':
command => 'sm-provision service barbican-api',
}
-> exec { 'Provision OpenStack - Barbican Keystone Listener (service-group-member)':
command => 'sm-provision service-group-member cloud-services barbican-keystone-listener',
}
-> exec { 'Provision OpenStack - Barbican Keystone Listener (service)':
command => 'sm-provision service barbican-keystone-listener',
}
-> exec { 'Provision OpenStack - Barbican Worker (service-group-member)':
command => 'sm-provision service-group-member cloud-services barbican-worker',
}
-> exec { 'Provision OpenStack - Barbican Worker (service)':
command => 'sm-provision service barbican-worker',
}
} else {
exec { 'Deprovision OpenStack - Barbican API (service-group-member)':
path => [ '/usr/bin', '/usr/sbin', '/usr/local/bin', '/etc', '/sbin', '/bin' ],
command => 'sm-deprovision service-group-member cloud-services barbican-api',
}
-> exec { 'Deprovision OpenStack - Barbican API (service)':
path => [ '/usr/bin', '/usr/sbin', '/usr/local/bin', '/etc', '/sbin', '/bin' ],
command => 'sm-deprovision service barbican-api',
}
exec { 'Deprovision OpenStack - Barbican Keystone Listener (service-group-member)':
path => [ '/usr/bin', '/usr/sbin', '/usr/local/bin', '/etc', '/sbin', '/bin' ],
command => 'sm-deprovision service-group-member cloud-services barbican-keystone-listener',
}
-> exec { 'Deprovision OpenStack - Barbican Keystone Listener (service)':
path => [ '/usr/bin', '/usr/sbin', '/usr/local/bin', '/etc', '/sbin', '/bin' ],
command => 'sm-deprovision service barbican-keystone-listener',
}
exec { 'Deprovision OpenStack - Barbican Worker (service-group-member)':
path => [ '/usr/bin', '/usr/sbin', '/usr/local/bin', '/etc', '/sbin', '/bin' ],
command => 'sm-deprovision service-group-member cloud-services barbican-worker',
}
-> exec { 'Deprovision OpenStack - Barbican Worker (service)':
path => [ '/usr/bin', '/usr/sbin', '/usr/local/bin', '/etc', '/sbin', '/bin' ],
command => 'sm-deprovision service barbican-worker',
}
}
if $ceph_configured {
if $system_type == 'All-in-one' and 'duplex' in $system_mode {
exec { 'Provision Cephmon FS in SM (service-group-member cephmon-fs)':
command => 'sm-provision service-group-member controller-services cephmon-fs',
}
-> exec { 'Provision Cephmon FS in SM (service cephmon-fs)':
command => 'sm-provision service cephmon-fs',
}
-> exec { 'Provision Cephmon DRBD in SM (service-group-member drbd-cephmon':
command => 'sm-provision service-group-member controller-services drbd-cephmon',
}
-> exec { 'Provision Cephmon DRBD in SM (service drbd-cephmon)':
command => 'sm-provision service drbd-cephmon',
}
-> exec { 'Configure Cephmon DRBD':
command => "sm-configure service_instance drbd-cephmon drbd-cephmon:${hostunit} \"drbd_resource=${cephmon_drbd_resource}\"",
}
-> exec { 'Configure Cephmon FileSystem':
command => "sm-configure service_instance cephmon-fs cephmon-fs \"device=${cephmon_fs_device},directory=${cephmon_fs_directory},options=noatime,nodiratime,fstype=ext4,check_level=20\"",
}
-> exec { 'Configure cephmon':
command => "sm-configure service_instance ceph-mon ceph-mon \"\"",
}
-> exec { 'Provision cephmon (service-group-member)':
command => 'sm-provision service-group-member controller-services ceph-mon',
}
-> exec { 'Provision cephmon (service)':
command => 'sm-provision service ceph-mon',
}
-> exec { 'Configure ceph-osd':
command => "sm-configure service_instance ceph-osd ceph-osd \"\"",
}
-> exec { 'Provision ceph-osd (service-group-member)':
command => 'sm-provision service-group-member storage-services ceph-osd',
}
-> exec { 'Provision ceph-osd (service)':
command => 'sm-provision service ceph-osd',
}
}
# Ceph-Rest-Api
exec { 'Provision Ceph-Rest-Api (service-domain-member storage-services)':
command => 'sm-provision service-domain-member controller storage-services',
}
-> exec { 'Provision Ceph-Rest-Api (service-group storage-services)':
command => 'sm-provision service-group storage-services',
}
-> exec { 'Provision Ceph-Rest-Api (service-group-member ceph-rest-api)':
command => 'sm-provision service-group-member storage-services ceph-rest-api',
}
-> exec { 'Provision Ceph-Rest-Api (service ceph-rest-api)':
command => 'sm-provision service ceph-rest-api',
}
# Ceph-Manager
-> exec { 'Provision Ceph-Manager (service-domain-member storage-monitoring-services)':
command => 'sm-provision service-domain-member controller storage-monitoring-services',
}
-> exec { 'Provision Ceph-Manager service-group storage-monitoring-services)':
command => 'sm-provision service-group storage-monitoring-services',
}
-> exec { 'Provision Ceph-Manager (service-group-member ceph-manager)':
command => 'sm-provision service-group-member storage-monitoring-services ceph-manager',
}
-> exec { 'Provision Ceph-Manager in SM (service ceph-manager)':
command => 'sm-provision service ceph-manager',
}
}
# Ceph-Rados-Gateway
if $ceph_configured {
exec {'Provision Ceph-Rados-Gateway (service-group-member ceph-radosgw)':
command => 'sm-provision service-group-member storage-monitoring-services ceph-radosgw'
}
-> exec { 'Provision Ceph-Rados-Gateway (service ceph-radosgw)':
command => 'sm-provision service ceph-radosgw',
}
}
if $ldapserver_remote {
# if remote LDAP server is configured, deprovision local openldap service.
exec { 'Deprovision open-ldap service group member':
command => '/usr/bin/sm-deprovision service-group-member directory-services open-ldap',
}
-> exec { 'Deprovision open-ldap service':
command => '/usr/bin/sm-deprovision service open-ldap',
}
}
if $::platform::params::distributed_cloud_role =='systemcontroller' {
exec { 'Provision distributed-cloud-services (service-domain-member distributed-cloud-services)':
command => 'sm-provision service-domain-member controller distributed-cloud-services',
}
-> exec { 'Provision distributed-cloud-services (service-group distributed-cloud-services)':
command => 'sm-provision service-group distributed-cloud-services',
}
-> exec { 'Provision DCManager-Manager (service-group-member dcmanager-manager)':
command => 'sm-provision service-group-member distributed-cloud-services dcmanager-manager',
}
-> exec { 'Provision DCManager-Manager in SM (service dcmanager-manager)':
command => 'sm-provision service dcmanager-manager',
}
-> exec { 'Provision DCManager-RestApi (service-group-member dcmanager-api)':
command => 'sm-provision service-group-member distributed-cloud-services dcmanager-api',
}
-> exec { 'Provision DCManager-RestApi in SM (service dcmanager-api)':
command => 'sm-provision service dcmanager-api',
}
-> exec { 'Provision DCOrch-Engine (service-group-member dcorch-engine)':
command => 'sm-provision service-group-member distributed-cloud-services dcorch-engine',
}
-> exec { 'Provision DCOrch-Engine in SM (service dcorch-engine)':
command => 'sm-provision service dcorch-engine',
}
-> exec { 'Provision DCOrch-Snmp (service-group-member dcorch-snmp)':
command => 'sm-provision service-group-member distributed-cloud-services dcorch-snmp',
}
-> exec { 'Provision DCOrch-Snmp in SM (service dcorch-snmp)':
command => 'sm-provision service dcorch-snmp',
}
-> exec { 'Provision DCOrch-Identity-Api-Proxy (service-group-member dcorch-identity-api-proxy)':
command => 'sm-provision service-group-member distributed-cloud-services dcorch-identity-api-proxy',
}
-> exec { 'Provision DCOrch-Identity-Api-Proxy in SM (service dcorch-identity-api-proxy)':
command => 'sm-provision service dcorch-identity-api-proxy',
}
-> exec { 'Provision DCOrch-Sysinv-Api-Proxy (service-group-member dcorch-sysinv-api-proxy)':
command => 'sm-provision service-group-member distributed-cloud-services dcorch-sysinv-api-proxy',
}
-> exec { 'Provision DCOrch-Sysinv-Api-Proxy in SM (service dcorch-sysinv-api-proxy)':
command => 'sm-provision service dcorch-sysinv-api-proxy',
}
-> exec { 'Provision DCOrch-Patch-Api-Proxy (service-group-member dcorch-patch-api-proxy)':
command => 'sm-provision service-group-member distributed-cloud-services dcorch-patch-api-proxy',
}
-> exec { 'Provision DCOrch-Patch-Api-Proxy in SM (service dcorch-patch-api-proxy)':
command => 'sm-provision service dcorch-patch-api-proxy',
}
-> exec { 'Configure Platform - DCManager-Manager':
command => "sm-configure service_instance dcmanager-manager dcmanager-manager \"\"",
}
-> exec { 'Configure OpenStack - DCManager-API':
command => "sm-configure service_instance dcmanager-api dcmanager-api \"\"",
}
-> exec { 'Configure OpenStack - DCOrch-Engine':
command => "sm-configure service_instance dcorch-engine dcorch-engine \"\"",
}
-> exec { 'Configure OpenStack - DCOrch-Snmp':
command => "sm-configure service_instance dcorch-snmp dcorch-snmp \"\"",
}
-> exec { 'Configure OpenStack - DCOrch-identity-api-proxy':
command => "sm-configure service_instance dcorch-identity-api-proxy dcorch-identity-api-proxy \"\"",
}
-> exec { 'Configure OpenStack - DCOrch-sysinv-api-proxy':
command => "sm-configure service_instance dcorch-sysinv-api-proxy dcorch-sysinv-api-proxy \"\"",
}
-> exec { 'Configure OpenStack - DCOrch-patch-api-proxy':
command => "sm-configure service_instance dcorch-patch-api-proxy dcorch-patch-api-proxy \"\"",
}
}
# lint:endignore:140chars
}
define platform::sm::restart {
exec {"sm-restart-${name}":
command => "sm-restart-safe service ${name}",
}
}
# WARNING:
# This should only be invoked in a standalone / simplex mode.
# It is currently used during infrastructure network post-install apply
# to ensure SM reloads the updated configuration after the manifests
# are applied.
# Semantic checks enforce the standalone condition (all hosts locked)
class platform::sm::reload {
# Ensure service(s) are restarted before SM is restarted
Platform::Sm::Restart <| |> -> Class[$name]
exec { 'pmon-stop-sm':
command => 'pmon-stop sm'
}
-> file { '/var/run/sm/sm.db':
ensure => absent
}
-> exec { 'pmon-start-sm':
command => 'pmon-start sm'
}
}
class platform::sm::norestart::runtime {
include ::platform::sm
}
class platform::sm::runtime {
include ::platform::sm
class { 'platform::sm::reload':
stage => post,
}
}
View Git Blame Copy Permalink