1 {% set enabled_roles = roles|rejectattr('disable_upgrade_deployment')|list -%}
2 {% set batch_upgrade_steps_max = 3 -%}
3 {% set upgrade_steps_max = 6 -%}
4 {% set deliver_script = {'deliver': False} -%}
5 heat_template_version: ocata
6 description: 'Upgrade steps for all roles'
14 description: Mapping of Role name e.g Controller to the per-role data
19 Setting to a previously unused value during stack-update will trigger
20 the Upgrade resources to re-run on all roles.
23 description: Mapping of service endpoint -> protocol. Typically set
24 via parameter_defaults in the resource registry.
29 description: Keystone region for endpoint
31 description: The password for the nova service and db account, used by nova-api.
36 # Conditions to disable any steps where the task list is empty
37 {%- for role in roles %}
38 {{role.name}}UpgradeBatchConfigEnabled:
41 - {get_param: [role_data, {{role.name}}, upgrade_batch_tasks]}
47 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
48 {{role.name}}DeliverUpgradeScriptConfig:
49 type: OS::Heat::SoftwareConfig
57 - "if hiera -c /etc/puppet/hiera.yaml service_names | grep nova_compute ; then\n\n"
58 - " crudini --set /etc/nova/nova.conf placement auth_type password\n\n"
59 - " crudini --set /etc/nova/nova.conf placement username placement\n\n"
60 - " crudini --set /etc/nova/nova.conf placement project_domain_name Default\n\n"
61 - " crudini --set /etc/nova/nova.conf placement user_domain_name Default\n\n"
62 - " crudini --set /etc/nova/nova.conf placement project_name service\n\n"
65 crudini --set /etc/nova/nova.conf placement password 'SERVICE_PASSWORD'
66 crudini --set /etc/nova/nova.conf placement region_name 'REGION_NAME'
67 crudini --set /etc/nova/nova.conf placement auth_url 'AUTH_URL'
69 SERVICE_PASSWORD: { get_param: NovaPassword }
70 REGION_NAME: { get_param: KeystoneRegion }
71 AUTH_URL: { get_param: [EndpointMap, KeystoneAdmin, uri_no_suffix]}
72 - " systemctl restart openstack-nova-compute\n\n"
78 ROLE_NAME: {{role.name}}
79 - get_file: ../extraconfig/tasks/pacemaker_common_functions.sh
80 - get_file: ../extraconfig/tasks/run_puppet.sh
81 - get_file: ../extraconfig/tasks/tripleo_upgrade_node.sh
83 {{role.name}}DeliverUpgradeScriptDeployment:
84 type: OS::Heat::SoftwareDeploymentGroup
86 servers: {get_param: [servers, {{role.name}}]}
87 config: {get_resource: {{role.name}}DeliverUpgradeScriptConfig}
90 # Upgrade Steps for all roles, batched updates
91 # The UpgradeConfig resources could actually be created without
92 # serialization, but the event output is easier to follow if we
93 # do, and there should be minimal performance hit (creating the
94 # config is cheap compared to the time to apply the deployment).
95 {% for step in range(0, batch_upgrade_steps_max) %}
96 # Batch config resources step {{step}}
97 {%- for role in roles %}
98 {{role.name}}UpgradeBatchConfig_Step{{step}}:
99 type: OS::TripleO::UpgradeConfig
101 condition: {{role.name}}UpgradeBatchConfigEnabled
102 {% if role.name in enabled_roles %}
104 - {{role.name}}UpgradeBatch_Step{{step -1}}
107 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
108 {% if deliver_script.update({'deliver': True}) %} {% endif %}
110 {% if deliver_script.deliver %}
113 {% for dep in roles if dep.disable_upgrade_deployment|default(false) %}
114 - {{dep.name}}DeliverUpgradeScriptDeployment
118 UpgradeStepConfig: {get_param: [role_data, {{role.name}}, upgrade_batch_tasks]}
122 # Batch deployment resources for step {{step}} (only for enabled roles)
123 {%- for role in enabled_roles %}
124 {{role.name}}UpgradeBatch_Step{{step}}:
125 type: OS::Heat::SoftwareDeploymentGroup
126 condition: {{role.name}}UpgradeBatchConfigEnabled
129 - {{role.name}}UpgradeBatch_Step{{step -1}}
132 - {{role.name}}UpgradeBatchConfig_Step{{step}}
136 max_batch_size: {{role.upgrade_batch_size|default(1)}}
138 max_batch_size: {{role.upgrade_batch_size|default(1)}}
140 name: {{role.name}}UpgradeBatch_Step{{step}}
141 servers: {get_param: [servers, {{role.name}}]}
142 config: {get_resource: {{role.name}}UpgradeBatchConfig_Step{{step}}}
145 update_identifier: {get_param: UpdateIdentifier}
149 # Dump the puppet manifests to be apply later when disable_upgrade_deployment
151 {% for role in roles if role.disable_upgrade_deployment|default(false) %}
152 {{role.name}}DeliverPuppetConfig:
153 type: OS::Heat::SoftwareConfig
162 cat > /root/{{role.name}}_puppet_config.pp << ENDOFCAT
166 PUPPET_CLASSES: {get_param: [role_data, {{role.name}}, step_config]}
168 {{role.name}}DeliverPuppetDeployment:
169 type: OS::Heat::SoftwareDeploymentGroup
171 servers: {get_param: [servers, {{role.name}}]}
172 config: {get_resource: {{role.name}}DeliverPuppetConfig}
175 # Upgrade Steps for all roles
176 {%- for step in range(0, upgrade_steps_max) %}
177 # Config resources for step {{step}}
178 {%- for role in roles %}
179 {{role.name}}UpgradeConfig_Step{{step}}:
180 type: OS::TripleO::UpgradeConfig
181 # The UpgradeConfig resources could actually be created without
182 # serialization, but the event output is easier to follow if we
183 # do, and there should be minimal performance hit (creating the
184 # config is cheap compared to the time to apply the deployment).
186 {% if role.name in enabled_roles %}
188 - {{role.name}}Upgrade_Step{{step -1}}
192 UpgradeStepConfig: {get_param: [role_data, {{role.name}}, upgrade_tasks]}
196 # Deployment resources for step {{step}} (only for enabled roles)
197 {%- for role in enabled_roles %}
198 {{role.name}}Upgrade_Step{{step}}:
199 type: OS::Heat::SoftwareDeploymentGroup
201 # Make sure we wait that all roles have finished their own
202 # previous step before going to the next, so we can guarantee
203 # state for each steps.
205 {%- for role_inside in enabled_roles %}
206 - {{role_inside.name}}Upgrade_Step{{step -1}}
210 name: {{role.name}}Upgrade_Step{{step}}
211 servers: {get_param: [servers, {{role.name}}]}
212 config: {get_resource: {{role.name}}UpgradeConfig_Step{{step}}}
215 update_identifier: {get_param: UpdateIdentifier}
219 # Post upgrade deployment steps for all roles
220 # This runs the normal configuration (e.g puppet) steps unless upgrade
221 # is disabled for the role
222 AllNodesPostUpgradeSteps:
223 type: OS::TripleO::PostUpgradeSteps
225 {%- for dep in enabled_roles %}
226 - {{dep.name}}Upgrade_Step{{upgrade_steps_max - 1}}
229 servers: {get_param: servers}
230 role_data: {get_param: role_data}
233 # Output the config for each role, just use Step1 as the config should be
234 # the same for all steps (only the tag provided differs)
236 description: The per-role upgrade configuration used
238 {% for role in roles %}
239 {{role.name.lower()}}: {get_attr: [{{role.name}}UpgradeConfig_Step1, upgrade_config]}