1 {% set enabled_roles = roles|rejectattr('disable_upgrade_deployment')|list -%}
2 {% set batch_upgrade_steps_max = 3 -%}
3 {% set upgrade_steps_max = 6 -%}
4 {% set deliver_script = {'deliver': False} -%}
5 heat_template_version: ocata
6 description: 'Upgrade steps for all roles'
14 description: Mapping of Role name e.g Controller to the per-role data
19 Setting to a previously unused value during stack-update will trigger
20 the Upgrade resources to re-run on all roles.
23 description: Mapping of service endpoint -> protocol. Typically set
24 via parameter_defaults in the resource registry.
29 description: Keystone region for endpoint
31 description: The password for the nova service and db account, used by nova-api.
37 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
38 {{role.name}}DeliverUpgradeScriptConfig:
39 type: OS::Heat::SoftwareConfig
47 - "if hiera -c /etc/puppet/hiera.yaml service_names | grep nova_compute ; then\n\n"
48 - " crudini --set /etc/nova/nova.conf placement auth_type password\n\n"
49 - " crudini --set /etc/nova/nova.conf placement username placement\n\n"
50 - " crudini --set /etc/nova/nova.conf placement project_domain_name Default\n\n"
51 - " crudini --set /etc/nova/nova.conf placement user_domain_name Default\n\n"
52 - " crudini --set /etc/nova/nova.conf placement project_name service\n\n"
53 - " crudini --set /etc/nova/nova.conf placement os_interface internal\n\n"
56 crudini --set /etc/nova/nova.conf placement password 'SERVICE_PASSWORD'
57 crudini --set /etc/nova/nova.conf placement os_region_name 'REGION_NAME'
58 crudini --set /etc/nova/nova.conf placement auth_url 'AUTH_URL'
60 SERVICE_PASSWORD: { get_param: NovaPassword }
61 REGION_NAME: { get_param: KeystoneRegion }
62 AUTH_URL: { get_param: [EndpointMap, KeystoneAdmin, uri_no_suffix]}
63 - " systemctl restart openstack-nova-compute\n\n"
69 ROLE_NAME: {{role.name}}
70 - get_file: ../extraconfig/tasks/pacemaker_common_functions.sh
71 - get_file: ../extraconfig/tasks/run_puppet.sh
72 - get_file: ../extraconfig/tasks/tripleo_upgrade_node.sh
74 {{role.name}}DeliverUpgradeScriptDeployment:
75 type: OS::Heat::SoftwareDeploymentGroup
77 servers: {get_param: [servers, {{role.name}}]}
78 config: {get_resource: {{role.name}}DeliverUpgradeScriptConfig}
81 # Upgrade Steps for all roles, batched updates
82 # The UpgradeConfig resources could actually be created without
83 # serialization, but the event output is easier to follow if we
84 # do, and there should be minimal performance hit (creating the
85 # config is cheap compared to the time to apply the deployment).
86 {% for step in range(0, batch_upgrade_steps_max) %}
87 # Batch config resources step {{step}}
88 {%- for role in roles %}
89 {{role.name}}UpgradeBatchConfig_Step{{step}}:
90 type: OS::TripleO::UpgradeConfig
93 {%- for role_inside in enabled_roles %}
94 - {{role_inside.name}}UpgradeBatch_Step{{step -1}}
97 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
98 {% if deliver_script.update({'deliver': True}) %} {% endif %}
100 {% if deliver_script.deliver %}
102 {% for dep in roles if dep.disable_upgrade_deployment|default(false) %}
103 - {{dep.name}}DeliverUpgradeScriptDeployment
108 UpgradeStepConfig: {get_param: [role_data, {{role.name}}, upgrade_batch_tasks]}
112 # Batch deployment resources for step {{step}} (only for enabled roles)
113 {%- for role in enabled_roles %}
114 {{role.name}}UpgradeBatch_Step{{step}}:
115 type: OS::Heat::SoftwareDeploymentGroup
118 {%- for role_inside in enabled_roles %}
119 - {{role_inside.name}}UpgradeBatch_Step{{step -1}}
122 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
123 {% if deliver_script.update({'deliver': True}) %} {% endif %}
125 {% if deliver_script.deliver %}
127 {% for dep in roles if dep.disable_upgrade_deployment|default(false) %}
128 - {{dep.name}}DeliverUpgradeScriptDeployment
134 max_batch_size: {{role.upgrade_batch_size|default(1)}}
136 max_batch_size: {{role.upgrade_batch_size|default(1)}}
138 servers: {get_param: [servers, {{role.name}}]}
139 config: {get_resource: {{role.name}}UpgradeBatchConfig_Step{{step}}}
142 update_identifier: {get_param: UpdateIdentifier}
146 # Dump the puppet manifests to be apply later when disable_upgrade_deployment
148 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
149 {{role.name}}DeliverPuppetConfig:
150 type: OS::Heat::SoftwareConfig
159 cat > /root/{{role.name}}_puppet_config.pp << ENDOFCAT
163 PUPPET_CLASSES: {get_param: [role_data, {{role.name}}, step_config]}
165 {{role.name}}DeliverPuppetDeployment:
166 type: OS::Heat::SoftwareDeploymentGroup
168 servers: {get_param: [servers, {{role.name}}]}
169 config: {get_resource: {{role.name}}DeliverPuppetConfig}
172 # Upgrade Steps for all roles
173 {%- for step in range(0, upgrade_steps_max) %}
174 # Config resources for step {{step}}
175 {%- for role in roles %}
176 {{role.name}}UpgradeConfig_Step{{step}}:
177 type: OS::TripleO::UpgradeConfig
178 # The UpgradeConfig resources could actually be created without
179 # serialization, but the event output is easier to follow if we
180 # do, and there should be minimal performance hit (creating the
181 # config is cheap compared to the time to apply the deployment).
183 {%- for role_inside in enabled_roles %}
185 - {{role_inside.name}}Upgrade_Step{{step -1}}
187 - {{role_inside.name}}UpgradeBatch_Step{{batch_upgrade_steps_max -1}}
191 UpgradeStepConfig: {get_param: [role_data, {{role.name}}, upgrade_tasks]}
195 # Deployment resources for step {{step}} (only for enabled roles)
196 {%- for role in enabled_roles %}
197 {{role.name}}Upgrade_Step{{step}}:
198 type: OS::Heat::SoftwareDeploymentGroup
200 {%- for role_inside in enabled_roles %}
202 - {{role_inside.name}}Upgrade_Step{{step -1}}
204 - {{role_inside.name}}UpgradeBatch_Step{{batch_upgrade_steps_max -1}}
208 servers: {get_param: [servers, {{role.name}}]}
209 config: {get_resource: {{role.name}}UpgradeConfig_Step{{step}}}
212 update_identifier: {get_param: UpdateIdentifier}
216 # Post upgrade deployment steps for all roles
217 # This runs the normal configuration (e.g puppet) steps unless upgrade
218 # is disabled for the role
219 AllNodesPostUpgradeSteps:
220 type: OS::TripleO::PostUpgradeSteps
222 {%- for dep in enabled_roles %}
223 - {{dep.name}}Upgrade_Step{{upgrade_steps_max - 1}}
226 servers: {get_param: servers}
227 role_data: {get_param: role_data}
230 # Output the config for each role, just use Step1 as the config should be
231 # the same for all steps (only the tag provided differs)
233 description: The per-role upgrade configuration used
235 {% for role in roles %}
236 {{role.name.lower()}}: {get_attr: [{{role.name}}UpgradeConfig_Step1, upgrade_config]}