1 {% set enabled_roles = roles|rejectattr('disable_upgrade_deployment')|list -%}
2 {% set batch_upgrade_steps_max = 3 -%}
3 {% set upgrade_steps_max = 6 -%}
4 {% set deliver_script = {'deliver': False} -%}
5 heat_template_version: ocata
6 description: 'Upgrade steps for all roles'
14 description: Mapping of Role name e.g Controller to the per-role data
19 Setting to a previously unused value during stack-update will trigger
20 the Upgrade resources to re-run on all roles.
23 description: Mapping of service endpoint -> protocol. Typically set
24 via parameter_defaults in the resource registry.
29 description: Keystone region for endpoint
31 description: The password for the nova service and db account, used by nova-api.
36 # Conditions to disable any steps where the task list is empty
37 {%- for role in roles %}
38 {{role.name}}UpgradeBatchConfigEnabled:
41 - {get_param: [role_data, {{role.name}}, upgrade_batch_tasks]}
43 {{role.name}}UpgradeConfigEnabled:
46 - {get_param: [role_data, {{role.name}}, upgrade_tasks]}
52 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
53 {{role.name}}DeliverUpgradeScriptConfig:
54 type: OS::Heat::SoftwareConfig
62 - "if hiera -c /etc/puppet/hiera.yaml service_names | grep nova_compute ; then\n\n"
63 - " crudini --set /etc/nova/nova.conf placement auth_type password\n\n"
64 - " crudini --set /etc/nova/nova.conf placement username placement\n\n"
65 - " crudini --set /etc/nova/nova.conf placement project_domain_name Default\n\n"
66 - " crudini --set /etc/nova/nova.conf placement user_domain_name Default\n\n"
67 - " crudini --set /etc/nova/nova.conf placement project_name service\n\n"
68 - " systemctl restart openstack-nova-compute\n\n"
72 crudini --set /etc/nova/nova.conf placement password 'SERVICE_PASSWORD'
73 crudini --set /etc/nova/nova.conf placement region_name 'REGION_NAME'
74 crudini --set /etc/nova/nova.conf placement auth_url 'AUTH_URL'
77 SERVICE_PASSWORD: { get_param: NovaPassword }
78 REGION_NAME: { get_param: KeystoneRegion }
79 AUTH_URL: { get_param: [EndpointMap, KeystoneAdmin, uri_no_suffix]}
80 ROLE_NAME: {{role.name}}
81 - get_file: ../extraconfig/tasks/pacemaker_common_functions.sh
82 - get_file: ../extraconfig/tasks/tripleo_upgrade_node.sh
84 {{role.name}}DeliverUpgradeScriptDeployment:
85 type: OS::Heat::SoftwareDeploymentGroup
87 servers: {get_param: [servers, {{role.name}}]}
88 config: {get_resource: {{role.name}}DeliverUpgradeScriptConfig}
91 # Upgrade Steps for all roles, batched updates
92 # The UpgradeConfig resources could actually be created without
93 # serialization, but the event output is easier to follow if we
94 # do, and there should be minimal performance hit (creating the
95 # config is cheap compared to the time to apply the deployment).
96 {% for step in range(0, batch_upgrade_steps_max) %}
97 # Batch config resources step {{step}}
98 {%- for role in roles %}
99 {{role.name}}UpgradeBatchConfig_Step{{step}}:
100 type: OS::TripleO::UpgradeConfig
102 condition: {{role.name}}UpgradeBatchConfigEnabled
103 {% if role.name in enabled_roles %}
105 - {{role.name}}UpgradeBatch_Step{{step -1}}
108 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
109 {% if deliver_script.update({'deliver': True}) %} {% endif %}
111 {% if deliver_script.deliver %}
114 {% for dep in roles if dep.disable_upgrade_deployment|default(false) %}
115 - {{dep.name}}DeliverUpgradeScriptDeployment
119 UpgradeStepConfig: {get_param: [role_data, {{role.name}}, upgrade_batch_tasks]}
123 # Batch deployment resources for step {{step}} (only for enabled roles)
124 {%- for role in enabled_roles %}
125 {{role.name}}UpgradeBatch_Step{{step}}:
126 type: OS::Heat::SoftwareDeploymentGroup
127 condition: {{role.name}}UpgradeBatchConfigEnabled
130 - {{role.name}}UpgradeBatch_Step{{step -1}}
133 - {{role.name}}UpgradeBatchConfig_Step{{step}}
137 max_batch_size: {{role.upgrade_batch_size|default(1)}}
139 max_batch_size: {{role.upgrade_batch_size|default(1)}}
141 name: {{role.name}}UpgradeBatch_Step{{step}}
142 servers: {get_param: [servers, {{role.name}}]}
143 config: {get_resource: {{role.name}}UpgradeBatchConfig_Step{{step}}}
146 update_identifier: {get_param: UpdateIdentifier}
150 # Dump the puppet manifests to be apply later when disable_upgrade_deployment
152 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
153 {{role.name}}DeliverPuppetConfig:
154 type: OS::Heat::SoftwareConfig
163 cat > /root/{{role.name}}_puppet_config.pp << ENDOFCAT
167 PUPPET_CLASSES: {get_param: [role_data, {{role.name}}, step_config]}
169 {{role.name}}DeliverPuppetDeployment:
170 type: OS::Heat::SoftwareDeploymentGroup
172 servers: {get_param: [servers, {{role.name}}]}
173 config: {get_resource: {{role.name}}DeliverPuppetConfig}
176 # Upgrade Steps for all roles
177 {%- for step in range(0, upgrade_steps_max) %}
178 # Config resources for step {{step}}
179 {%- for role in roles %}
180 {{role.name}}UpgradeConfig_Step{{step}}:
181 type: OS::TripleO::UpgradeConfig
182 # The UpgradeConfig resources could actually be created without
183 # serialization, but the event output is easier to follow if we
184 # do, and there should be minimal performance hit (creating the
185 # config is cheap compared to the time to apply the deployment).
187 condition: {{role.name}}UpgradeConfigEnabled
188 {% if role.name in enabled_roles %}
190 - {{role.name}}Upgrade_Step{{step -1}}
194 UpgradeStepConfig: {get_param: [role_data, {{role.name}}, upgrade_tasks]}
198 # Deployment resources for step {{step}} (only for enabled roles)
199 {%- for role in enabled_roles %}
200 {{role.name}}Upgrade_Step{{step}}:
201 type: OS::Heat::SoftwareDeploymentGroup
203 condition: {{role.name}}UpgradeConfigEnabled
205 - {{role.name}}Upgrade_Step{{step -1}}
208 name: {{role.name}}Upgrade_Step{{step}}
209 servers: {get_param: [servers, {{role.name}}]}
210 config: {get_resource: {{role.name}}UpgradeConfig_Step{{step}}}
213 update_identifier: {get_param: UpdateIdentifier}
217 # Post upgrade deployment steps for all roles
218 # This runs the normal configuration (e.g puppet) steps unless upgrade
219 # is disabled for the role
220 AllNodesPostUpgradeSteps:
221 type: OS::TripleO::PostUpgradeSteps
223 {%- for dep in enabled_roles %}
224 - {{dep.name}}Upgrade_Step{{upgrade_steps_max - 1}}
227 servers: {get_param: servers}
228 role_data: {get_param: role_data}
231 # Output the config for each role, just use Step1 as the config should be
232 # the same for all steps (only the tag provided differs)
234 description: The per-role upgrade configuration used
236 {% for role in roles %}
237 {{role.name.lower()}}: {get_attr: [{{role.name}}UpgradeConfig_Step1, upgrade_config]}