Steven Hardy [Tue, 8 Dec 2015 10:28:08 +0000 (10:28 +0000)]
Enable per-role SchedulerHints
This adds a parameter for each role, where optional scheduler hints
may be passed to nova. One potential use-case for this is using
the ComputeCapabilities to pin deployment to a specific node (not
just a specific role/profile mapping to a pool of nodes like we
have currently documented in the ahc-match docs).
This could work as follows:
1. Tag a specific node as "node:controller-0" in Ironic:
ironic node-update <id> replace properties/capabilities='node:controller-0,boot_option:local'
2. Create a heat environment file which uses %index%
parameters:
ControllerSchedulerHints:
'capabilities:node': 'controller-%index%'
Change-Id: I79251dde719b4bb5c3b0cce90d0c9d1581ae66f2
Jenkins [Mon, 7 Dec 2015 20:39:12 +0000 (20:39 +0000)]
Merge "Making nova parameters configurable for nuage-metadata-agent"
Jenkins [Mon, 7 Dec 2015 19:17:56 +0000 (19:17 +0000)]
Merge "Add option to add metadata for the overcloud nodes"
Jenkins [Mon, 7 Dec 2015 09:29:57 +0000 (09:29 +0000)]
Merge "Fix the wrong selinux context when glance uses nfs backend"
Rohit Pagedar [Wed, 14 Oct 2015 20:13:07 +0000 (16:13 -0400)]
Making nova parameters configurable for nuage-metadata-agent
Exposing 'instance_name_template' to be set via
extra config for nuage-metadata-agent to function
Making nova::api::admin_tenant_name
available on the compute node which is
required by nuage-metadata-agent service
Making KeystonePublicApiVirtualIP available
on the compute node, which is used by the
nuage-metadata-agent to build the auth-url
Change-Id: I9736015e18cebf32b07940bf559063b60085f2fb
Juan Antonio Osorio Robles [Fri, 4 Dec 2015 13:36:30 +0000 (15:36 +0200)]
Add option to add metadata for the overcloud nodes
Some Nova hooks might require custom properties/metadata set for the
servers deployed in the overcloud, and this would enable us to inject
such information.
For FreeIPA (IdM) integration, there is effectively a Nova hook that
requires such data.
Currently this inserts metadata for all servers, but a subsequent CR
will introduce per-role metadata. However, that was not added to this
because it will require the usage of map_merge. which will block those
changes to be backported. However, this one is not a problem in that
sense.
Change-Id: I98b15406525eda8dff704360d443590260430ff0
Dan Prince [Wed, 25 Nov 2015 16:21:09 +0000 (11:21 -0500)]
Drop os-apply-config. No longer maintained.
Change-Id: I29e2a8f1b0c66f3cf88f40244d6da49f3d7420be
Dan Prince [Wed, 25 Nov 2015 16:19:40 +0000 (11:19 -0500)]
Rename overcloud-without-mergepy to overcloud.
Mergepy is gone. We can now rename our primary overcloud
template to be more sensible.
Change-Id: I14f5ff78b083b34590d30357df94c42ff6a0c2c0
Jenkins [Thu, 3 Dec 2015 18:27:04 +0000 (18:27 +0000)]
Merge "Minor fixes to TLS related resources"
Jenkins [Thu, 3 Dec 2015 14:36:37 +0000 (14:36 +0000)]
Merge "Make all network ports type to consume FixedIPs"
Jenkins [Thu, 3 Dec 2015 09:08:19 +0000 (09:08 +0000)]
Merge "Add pcmk constraints against haproxy-clone only if applicable"
Jenkins [Thu, 3 Dec 2015 09:06:29 +0000 (09:06 +0000)]
Merge "Fix default route in multiple nics net isolation templates"
Jenkins [Thu, 3 Dec 2015 09:06:03 +0000 (09:06 +0000)]
Merge "Introduce domain configuration through parameter"
Jenkins [Thu, 3 Dec 2015 09:03:44 +0000 (09:03 +0000)]
Merge "Apply mongod timeout via cib-push"
Jenkins [Wed, 2 Dec 2015 14:40:12 +0000 (14:40 +0000)]
Merge "Added libvirt_vif_driver, ovs_bridge and security_group_api parameters"
Jenkins [Wed, 2 Dec 2015 14:39:59 +0000 (14:39 +0000)]
Merge "Make enabling of controller services configurable."
Jenkins [Wed, 2 Dec 2015 14:39:56 +0000 (14:39 +0000)]
Merge "Changes for configuring Nuage"
Jenkins [Wed, 2 Dec 2015 14:37:51 +0000 (14:37 +0000)]
Merge "Changes for configuring Nuage"
Giulio Fidente [Wed, 2 Dec 2015 14:07:22 +0000 (15:07 +0100)]
Add pcmk constraints against haproxy-clone only if applicable
When the Overcloud does not host an instance of haproxy, pcmk will
not have any resource named haproxy-clone so we should not add
any constraint relying on it.
Change-Id: I801f07b7570f3805aa71c22998fec6b6f192b350
Juan Antonio Osorio Robles [Wed, 28 Oct 2015 14:43:51 +0000 (16:43 +0200)]
Introduce domain configuration through parameter
Introduce configuration of the nodes' domains through a parameter.
Change-Id: Ie012f9f2a402b0333bebecb5b59565c26a654297
Dan Sneddon [Wed, 2 Dec 2015 02:04:46 +0000 (18:04 -0800)]
Fix default route in multiple nics net isolation templates
The non-controller nodes in the network/config/multiple-nics
directory do not have a default route configured. This change
adds the default route to the non-controller nodes using the
ControlPlaneDefaultRoute parameter, which was already a part
of these templates.
Change-Id: Idaaeb2a539555ac14cc613b202c428108bc19a30
Jenkins [Tue, 1 Dec 2015 22:46:44 +0000 (22:46 +0000)]
Merge "Drop deprecated templates/Makefile/merge.py"
Rohit Pagedar [Wed, 14 Oct 2015 20:25:18 +0000 (16:25 -0400)]
Changes for configuring Nuage
Added ExtraConfig templates and environment files
for Nuage Networks specific parameters.
Modified overcloud_compute.pp to conditionally
include nuage-metadata-agent.
Change-Id: I28106d8e26ad4d0158fe5e3a13f2f7b21e5c0b28
Lokesh Jain [Thu, 1 Oct 2015 19:57:57 +0000 (15:57 -0400)]
Changes for configuring Nuage
Added ExtraConfig templates and environment files for Nuage specific parameters.
Modified overcloud_compute.pp and overcloud_controller.pp to conditionally
include Nuage plugin and agents.
Change-Id: I95510c753b0a262c73566481f9e94279970f4a4f
Jenkins [Thu, 26 Nov 2015 10:37:34 +0000 (10:37 +0000)]
Merge "Make load balancer deployment optional via template param"
Jenkins [Thu, 26 Nov 2015 10:31:31 +0000 (10:31 +0000)]
Merge "Add net_vip_map_external to be used for an external balancer"
Juan Antonio Osorio Robles [Wed, 25 Nov 2015 11:23:54 +0000 (13:23 +0200)]
Minor fixes to TLS related resources
* Fixed a comment to avoid ambiguity with concepts in Heat
* Removed default values from necessary parameters in the TLS
environment
* Simplified setting of the cert/key into a file.
Change-Id: I351778150a6fbf7affe1a0fddb1abb9869324dfc
vinayrao123 [Sat, 3 Oct 2015 19:24:10 +0000 (15:24 -0400)]
Make enabling of controller services configurable.
Following parameters will be user configurable:
1. enable_dhcp_agent
2. enable_metadta_agent
3. enable_l3_agent
4. enable_ovs_agent
This change was made as the Nuage plugin does not require these
services to come up as a part of the installation.
Now, a user can explicitly disable these services using a heat
template.
Change-Id: Ic132ecbb2e81a3746f304da1cecdc66d0342db72
Dan Prince [Wed, 25 Nov 2015 16:17:14 +0000 (11:17 -0500)]
Drop deprecated templates/Makefile/merge.py
This patch drops a bunch of deprecated stuff from
tripleo-heat-templates. Once we remove the Makefile
(which creates overcloud.yaml) we can proceed
in renaming overcloud-without-mergepy.yaml to
overcloud.yaml.
Change-Id: Ic6ab3777d19e207cae29dcbc2e3839815cd80181
Jenkins [Wed, 25 Nov 2015 18:58:17 +0000 (18:58 +0000)]
Merge "Update: clean keepalived and radvd instances after pcs cluster stop"
Jenkins [Wed, 25 Nov 2015 17:59:03 +0000 (17:59 +0000)]
Merge "Output the SSL Certificate and Key modulus"
Jenkins [Wed, 25 Nov 2015 17:58:58 +0000 (17:58 +0000)]
Merge "Enable trust anchor injection"
Jenkins [Wed, 25 Nov 2015 17:57:38 +0000 (17:57 +0000)]
Merge "Inject TLS certificate and keys for the Overcloud"
Jenkins [Wed, 25 Nov 2015 14:42:10 +0000 (14:42 +0000)]
Merge "Fixup neutron constraints in older overclouds before updating"
Mark Chappell [Wed, 4 Nov 2015 11:18:22 +0000 (12:18 +0100)]
Output the SSL Certificate and Key modulus
Provides a simple mechanism to verify the correct certificates
landed.
A quick and simple way to verify SSL certificates were generated for
a given key is by comparing the modulus of the two. By outputing
the key modulus and certificate modulus we offer a way to verify
that the right cert and key have been deployed without compromising
any of the secrets.
Change-Id: I882c9840719a09795ba8057a19b0b3985e036c3c
Juan Antonio Osorio Robles [Tue, 3 Nov 2015 13:27:28 +0000 (15:27 +0200)]
Enable trust anchor injection
This commit enables the injection of a trust anchor or root
certificate into every node in the overcloud. This is in case that the
TLS certificates for the controllers are signed with a self-signed CA
or if the deployer would like to inject a relevant root certificate
for other purposes. In this case the other nodes might need to have
the root certificate in their trust chain in order to do proper
validation
Change-Id: Ia45180fe0bb979cf12d19f039dbfd22e26fb4856
Giulio Fidente [Wed, 25 Nov 2015 08:45:24 +0000 (09:45 +0100)]
Apply mongod timeout via cib-push
We forgot to apply the mongod timeout in the cib dump first, to
apply it later in a single cib-push step.
Change-Id: Ib104e51782c6d3f646907cdb06c74fd4cbf9028c
Jiri Stransky [Tue, 24 Nov 2015 12:18:44 +0000 (13:18 +0100)]
Update: clean keepalived and radvd instances after pcs cluster stop
Older neutron versions have a bug which makes them leave keepalived and
radvd running even after all neutron services are stopped, preventing
neutron router failover from happening. Router can then get stuck on the
inactive node, like this:
[stack@instack ~]$ neutron l3-agent-list-hosting-router default_router
+--------------------------------------+------------------------------------+----------------+-------+----------+
| id | host | admin_state_up | alive | ha_state |
+--------------------------------------+------------------------------------+----------------+-------+----------+
|
48ca9477-b93b-4305-9e6d-
9f1c5d3388f0 | overcloud-controller-1.localdomain | True | :-) | standby |
|
eba0575c-654f-4da6-b1cd-
f7fdf1cd3726 | overcloud-controller-2.localdomain | True | :-) | standby |
|
68815390-251f-4425-a5f8-
38bdbf3bdb90 | overcloud-controller-0.localdomain | True | xxx | active |
+--------------------------------------+------------------------------------+----------------+-------+----------+
We need to kill the leftover processes manually to prevent the state
described above from happening.
See https://review.gerrithub.io/#/c/248931
Change-Id: I2deaa176222983daa0c33ab52a6aa5dbe7365302
Jenkins [Tue, 24 Nov 2015 10:21:16 +0000 (10:21 +0000)]
Merge "Point registry at tripleoupstream"
Giulio Fidente [Wed, 11 Nov 2015 12:05:20 +0000 (13:05 +0100)]
Make load balancer deployment optional via template param
Adds control over the load balancer deployment via template param.
Change-Id: I5625083ff323a87712a5fd3f9a64dd66d2838468
Dan Prince [Thu, 10 Sep 2015 13:30:01 +0000 (09:30 -0400)]
Add net_vip_map_external to be used for an external balancer
Changes VipMap into a new NetVipMap resource which defaults to
being the same as the 'old' VipMap. An environment file can be
used to map NetVipMap instead to the net_vip_map_external.yaml
which allows for passing in explicit Virtual IP addresses.
It also ensures that references to the Virtual IPs are gathered
from the VipMap resource and allows for an empty ControlPlaneIP
parameter in the neutron port templates where it can be.
Co-Authored-By: Giulio Fidente <gfidente@redhat.com>
Change-Id: Ifad32e18f12b9997e3f89e4afe3ebc4c30e14a86
Jenkins [Mon, 23 Nov 2015 18:28:30 +0000 (18:28 +0000)]
Merge "Sample environment with old ServiceNetMap value"
Jenkins [Mon, 23 Nov 2015 18:22:48 +0000 (18:22 +0000)]
Merge "Implement Advanced Firewalling support"
James Slagle [Mon, 23 Nov 2015 18:06:12 +0000 (13:06 -0500)]
Sample environment with old ServiceNetMap value
The original value for the ServiceNetMap parameter had the Keystone
Admin API service on the Internal API network. Later, it was moved to
the ctlplane network by default.
Users updating from clouds already deployed may not want to have the
service moved, and we've occassionly seen it cause issues with services
not getting restarted properly.
This sample environment file documents the old value so that users can
just optionally include it via -e to keep the services the same as they
were when they originally deployed.
Change-Id: I0b68542337a2f40e26df15fe7ac2da5aafe651d5
marios [Mon, 23 Nov 2015 08:24:00 +0000 (10:24 +0200)]
Fixup neutron constraints in older overclouds before updating
The neutron pcs constraints were reworked in
https://review.openstack.org/#/c/229466/
For overclouds deployed with older tripleo-heat-templates the
current pcs ordering constraints will not have those changes,
meaning that the behaviour discussed at
https://bugs.launchpad.net/tripleo/+bug/
1501378 is likely
given we will stop and restart all services. This review
applies those, in short, remove the ovs-cleanup after
neutron-server and add openvswitch-agent instead. Detail in
the bug report and linked BZ.
Change-Id: I45822c5fe9029f11635400b7fbd386880ac80a4e
Related-Bug:
1501378
Jenkins [Mon, 23 Nov 2015 12:47:37 +0000 (12:47 +0000)]
Merge "Add constraints and timeouts from file in single step"
Juan Antonio Osorio Robles [Tue, 3 Nov 2015 13:19:18 +0000 (15:19 +0200)]
Inject TLS certificate and keys for the Overcloud
This is a first implementation of adding TLS termination to the load
balancer in the controllers. The implementation was made so that the
appropriate certificate/private key in PEM format is copied to the
appropriate controller(s) via a software deployment resource.
And the path is then referenced on the HAProxy configuration, but this
part was left commented out because we need to be able to configure the
keystone endpoints in order for this to work properly.
Change-Id: I0ba8e38d75a0c628d8132a66dc25a30fc5183c79
Jenkins [Mon, 23 Nov 2015 09:48:47 +0000 (09:48 +0000)]
Merge "Allows for customization of NetworkDeployment actions"
Jenkins [Fri, 20 Nov 2015 20:21:03 +0000 (20:21 +0000)]
Merge "Change default host reserved memory to 2048MB from 512MB"
Giulio Fidente [Fri, 20 Nov 2015 17:14:03 +0000 (18:14 +0100)]
Allows for customization of NetworkDeployment actions
We don't necessarily want the network configuration to be reapplied
with every template update so we add a param to configure on which
action the NetworkDeployment resource should be executed.
Change-Id: I0e86318eb5521e540cc567ce9d77e1060086d48b
Co-Authored-By: Dan Sneddon <dsneddon@redhat.com>
Co-Authored-By: James Slagle <jslagle@redhat.com>
Co-Authored-By: Jiri Stransky <jstransk@redhat.com>
Co-Authored-By: Steven Hardy <shardy@redhat.com>
Ryan Hallisey [Fri, 20 Nov 2015 18:21:39 +0000 (13:21 -0500)]
Point registry at tripleoupstream
The tripleoupstream registry contains images that are built
every time there is a change in delorean.
The gate also needs this.
Change-Id: If460853284588f637de820afa54069f773f2e6f7
Jenkins [Fri, 20 Nov 2015 17:28:57 +0000 (17:28 +0000)]
Merge "Nova-libvirt needs to bind to /sys/fs/cgroup"
Jenkins [Fri, 20 Nov 2015 17:28:48 +0000 (17:28 +0000)]
Merge "Add local docker registry support"
Jenkins [Fri, 20 Nov 2015 17:26:46 +0000 (17:26 +0000)]
Merge "Update docker compute environment to use json config"
Joe Talerico [Thu, 19 Nov 2015 13:07:26 +0000 (08:07 -0500)]
Change default host reserved memory to 2048MB from 512MB
Results from pmap of idle nova-compute:
https://gist.github.com/jtaleric/
addd9079d6cdf4f7cf42
Results from free -m and cat /proc/meminfo:
https://gist.github.com/jtaleric/
410130f09c2aad2dc7e9
bug: https://bugzilla.redhat.com/show_bug.cgi?id=
1282644
Change-Id: I9b3ceecabfdae0a516cfc72886fde7b26cc68f82
Emilien Macchi [Fri, 12 Jun 2015 19:20:17 +0000 (15:20 -0400)]
Implement Advanced Firewalling support
Consume puppet-tripleo to create/manage IPtables from Heat templates.
This review put in place the logic to enable and setup firewall rules.
A known set of rules are applied. More to come.
Change-Id: Ib79c23fb27fe3fc03bf223e6922d896cb33dad22
Co-Authored-By: Yanis Guenane <yguenane@redhat.com>
Depends-On: I144c60db2a568a94dce5b51257f1d10980173325
Giulio Fidente [Wed, 18 Nov 2015 21:23:26 +0000 (22:23 +0100)]
Add constraints and timeouts from file in single step
To avoid pcmk reconfiguring the resources on each config change,
we want to apply the constraints and timeouts from file.
We also *do not* want to alter the timeouts for a few ocf resources
which are rabbitmq, neutron-netns-cleanup and neutron-ovs-cleanup
Change-Id: I6875f19e1f34f0fdcf0928421f49b61d857ca7c8
Co-Authored-By: Andrew Beekhof <abeekhof@redhat.com>
Jenkins [Wed, 18 Nov 2015 11:24:45 +0000 (11:24 +0000)]
Merge "Implement Neutron enable_isolated_metadata parameters"
Jenkins [Wed, 18 Nov 2015 10:53:59 +0000 (10:53 +0000)]
Merge "Verify galera is sync'd in yum_update.sh"
Jenkins [Tue, 17 Nov 2015 20:13:41 +0000 (20:13 +0000)]
Merge "neutron: enable nova-event-callback by default"
Jenkins [Tue, 17 Nov 2015 17:41:28 +0000 (17:41 +0000)]
Merge "Pass ceph::pool arguments when calling class"
Lokesh Jain [Wed, 30 Sep 2015 21:41:32 +0000 (17:41 -0400)]
Added libvirt_vif_driver, ovs_bridge and security_group_api parameters
Made libvirt_vif_driver, ovs_bridge and security_group_api parameters
in nova as configurable parameters through heat templates
Change-Id: I3f355c31a64912baa1a159d59f0fa9089f77b8f4
Emilien Macchi [Mon, 21 Sep 2015 17:46:02 +0000 (13:46 -0400)]
neutron: enable nova-event-callback by default
* Add NovaApiVirtualIP string parameter.
* Compute nova_url and nova_admin_auth_url parameters.
* Configure in Hiera neutron::server::notifications::* parameters.
* non-ha: include ::neutron::server::notifications
* ha: include ::neutron::server::notifications and create orchestration
* Set vif_plugging_is_fatal to True so we actually fail if Neutron is not
able to create the VIF during Nova server creation workflow.
Depends-On: I21dc10396e92906eab4651c318aa2ee62a8e03c7
Change-Id: I02e41f87404e0030d488476680af2f6d45af94ff
Cyril Lopez [Tue, 20 Oct 2015 07:48:49 +0000 (09:48 +0200)]
Implement Neutron enable_isolated_metadata parameters
* Use the parameter in Puppet configuration (Hiera) to configure neutron
BZ-
1273303
Change-Id: Ic5a7a1f13fd2bc800cadc3a78b1daadbc0394787
Signed-off-by: Cyril Lopez <cylopez@redhat.com>
James Slagle [Wed, 11 Nov 2015 20:54:25 +0000 (15:54 -0500)]
Verify galera is sync'd in yum_update.sh
When the cluster is brought back online after a yum update in
yum_update.sh, we should verify that galera is fully sync'd before
moving on. This ensures the sync is complete before moving on to update
any other nodes in the cluster.
Change-Id: Ie8fc2c5d5214deacea94ca658ac75359b318ced1
Jenkins [Tue, 17 Nov 2015 15:40:44 +0000 (15:40 +0000)]
Merge "Add support for enabling L2 population in Neutron"
Jenkins [Tue, 17 Nov 2015 12:47:20 +0000 (12:47 +0000)]
Merge "Add simple linux bridge as network environment"
Jaume Devesa [Tue, 10 Nov 2015 10:45:22 +0000 (10:45 +0000)]
Add simple linux bridge as network environment
Create a bridge for the overcloud services using linux bridge instead of
openvswitch. Some SDNs may be incompatible with openvswitch datapath.
Change-Id: I873368e74ddfd95bf5c6e1f88cec33ba011e09dd
Brent Eagles [Thu, 12 Nov 2015 14:56:53 +0000 (11:26 -0330)]
Add support for enabling L2 population in Neutron
This change adds support for enabling/disabling L2 population in
Neutron agents. It currently defaults to false.
Change-Id: I3dd19feb4acb1046bc560b35e5a7a111364ea0d7
Jenkins [Mon, 16 Nov 2015 14:08:12 +0000 (14:08 +0000)]
Merge "Add environment for isolated networks without tunneling VLAN"
Jenkins [Mon, 16 Nov 2015 14:05:41 +0000 (14:05 +0000)]
Merge "Support network isolation without external nets"
Jenkins [Mon, 16 Nov 2015 14:01:53 +0000 (14:01 +0000)]
Merge "Add the GlanceRegistry and Horizon endpoints to EndpointMap"
Jenkins [Mon, 16 Nov 2015 14:00:50 +0000 (14:00 +0000)]
Merge "Expose the IP of the Endpoints"
Jenkins [Mon, 16 Nov 2015 13:59:19 +0000 (13:59 +0000)]
Merge "Make CloudName available for Endpoints"
Giulio Fidente [Mon, 16 Nov 2015 12:49:00 +0000 (13:49 +0100)]
Make all network ports type to consume FixedIPs
This change adds to the internal_api, storage, storage_mgmt and
tenant network ports the FixedIPs param and make them consume it
when passed.
Change-Id: Ica2bca9f573b206cc60c9d572224a8cc7b9b8aa4
Jenkins [Mon, 16 Nov 2015 10:17:43 +0000 (10:17 +0000)]
Merge "Bump further the stop/start timeout for pcmk/systemd services"
Jenkins [Mon, 16 Nov 2015 09:49:58 +0000 (09:49 +0000)]
Merge "Set start/stop pacemaker resource timeouts for updates"
Jenkins [Mon, 16 Nov 2015 09:47:55 +0000 (09:47 +0000)]
Merge "Add missing constraints in yum_update.sh"
Jenkins [Fri, 13 Nov 2015 21:43:51 +0000 (21:43 +0000)]
Merge "honor the rabbit user and password provided"
Jenkins [Fri, 13 Nov 2015 18:46:51 +0000 (18:46 +0000)]
Merge "Fix cinder error when CinderNfsMountOptions option is absent"
Giulio Fidente [Wed, 11 Nov 2015 10:51:23 +0000 (11:51 +0100)]
Pass ceph::pool arguments when calling class
Pass the ceph::pool properties as arguments to the class call
instead of setting them as class defaults.
Ceph recommends max 32 PGs and min 4 PGs per OSD so this change
also lowers the defaults to 32 which works with 1 OSD, suits well
a scenario with 3 OSDs and is easy to customize in the static
hiera if more than 8 OSDs are deployed.
More info at: https://bugzilla.redhat.com/show_bug.cgi?id=
1252546
Change-Id: Ifed11d1857900b2251dfdf69d6b6f168150e6330
Jenkins [Fri, 13 Nov 2015 17:53:30 +0000 (17:53 +0000)]
Merge "Refacter Endpoints into EndpointMap"
Jenkins [Fri, 13 Nov 2015 17:26:34 +0000 (17:26 +0000)]
Merge "Add DeployIdentifier overcloud parameter"
Pierre Blanc [Fri, 13 Nov 2015 16:28:54 +0000 (11:28 -0500)]
Fix cinder error when CinderNfsMountOptions option is absent
When I deploy director with NFS backend for cinder,
sometimes I don't need nfs mount options.
If I choose to omit this option, or if the option
is defined to '', the deployment fails.
This patch add just a default value for this option.
Change-Id: Idf708aaecebd5c6db14f48ad2a53d6c2453be5ee
Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=
1281870
Jiri Stransky [Fri, 13 Nov 2015 14:12:54 +0000 (15:12 +0100)]
Set start/stop pacemaker resource timeouts for updates
This matches change I6fc18f1ad876c5a25723710a3b20d8ec9519dcba, but we
need it to set it before attempting the cluster stop - yum update -
cluster start cycle, to make sure this cycle doesn't hit the low timeout
limits.
This can be removed once updates from deployments made prior to
I6fc18f1ad876c5a25723710a3b20d8ec9519dcba are no longer supported.
Change-Id: I587136d8d045d213875c657ea5a405074f80c8ad
Giulio Fidente [Fri, 13 Nov 2015 14:00:30 +0000 (15:00 +0100)]
Bump further the stop/start timeout for pcmk/systemd services
This bumps further up the stop/start timeout for the pcmk/systemd
services so that it matches the 100s default set in future pcmk
versions [1].
1. https://github.com/ClusterLabs/pacemaker/commit/
17d65e9f44061a4fa14a9cddd6edc403b2d6d2b3
Change-Id: I6fc18f1ad876c5a25723710a3b20d8ec9519dcba
Jenkins [Thu, 12 Nov 2015 15:57:14 +0000 (15:57 +0000)]
Merge "Pin docker version for atomic at 1.8.2"
Jenkins [Thu, 12 Nov 2015 11:02:55 +0000 (11:02 +0000)]
Merge "Set default start/stop timeout for pcmk services to 95s"
Jenkins [Thu, 12 Nov 2015 10:24:46 +0000 (10:24 +0000)]
Merge "Change default bond-mode"
Dan Prince [Wed, 11 Nov 2015 22:46:50 +0000 (17:46 -0500)]
Add DeployIdentifier overcloud parameter
We've heard from end users that it is confusing that puppet
isn't re-executed on a heat stack-update.
This patch adds a new DeployIdentifier parameter which
we can set via client tooling (tripleoclient) to a unique
value so that on each heat stack-update we always execute
all of our configuration deployments.
Change-Id: Ic352ddd30807dc378e5e7b6c396bc53f5d6d5622
Related-bug: #
1505430
Joe Talerico [Thu, 22 Oct 2015 17:47:04 +0000 (13:47 -0400)]
Change default bond-mode
The default balance-tcp is causing issues with deployments.
Defaulting to active-backup.
After ~ 100 guests (total) connectivity to each guest would become spotty
(simple pings would fail, then become successful.) In /var/log/messages
we saw :
"overcloud-controller-1 kernel: openvswitch: ovs-system: deferred action
limit reached, drop recirc action"
For more details, refer to this link:
http://openvswitch.org/pipermail/discuss/2015-October/019168.html
Change-Id: Ia0f2592a289e13472b98d97057cd516c5048fe59
James Slagle [Wed, 11 Nov 2015 20:46:52 +0000 (15:46 -0500)]
Add missing constraints in yum_update.sh
Some missing pacemaker constraints were added in the following commits:
https://review.openstack.org/#/c/219770/
https://review.openstack.org/#/c/219665/
https://review.openstack.org/#/c/218931/
https://review.openstack.org/#/c/218930/
Overclouds that were deployed prior to these constraints being added to
tripleo-heat-templates still have the constraints missing. During an
update, stopping and starting the cluster can fail without these
constraints in place. As a workaround, conditionally add these
contraints in yum_update.sh so that we're sure they're always present
before updating.
Change-Id: Id46c85dbbe5e85d362279661091b17ce1b697fe0
Jenkins [Wed, 11 Nov 2015 15:29:28 +0000 (15:29 +0000)]
Merge "Allow customization of Ceph client user"
Jenkins [Wed, 11 Nov 2015 10:44:05 +0000 (10:44 +0000)]
Merge "Allow a user to specify a comma separated list of ntp servers"
Mark Chappell [Tue, 3 Nov 2015 16:15:46 +0000 (17:15 +0100)]
Add the GlanceRegistry and Horizon endpoints to EndpointMap
We need to pass details of the Glance Registry and public Horizon
endpoints to the load balancers so add them to the EndpointMap
Change-Id: Ia6261223e7701734f47ce48471c86f690ba3dcd5
Mark Chappell [Tue, 3 Nov 2015 16:14:04 +0000 (17:14 +0100)]
Expose the IP of the Endpoints
We expose all of the other parameters, so expose the IP too for
consistency
Change-Id: I5c31befde51e398318c7b8c744310212288ad892
Mark Chappell [Wed, 28 Oct 2015 14:30:41 +0000 (15:30 +0100)]
Make CloudName available for Endpoints
CloudName is the DNS name for the public VIP this means we will likely
want it available for use in the endpoint hostnames, rather than people
needing to copy and paste the same hostname
Change-Id: Ic6d708b083244442195eee890de91bbc7e133ec2
Mark Chappell [Tue, 3 Nov 2015 13:29:57 +0000 (15:29 +0200)]
Refacter Endpoints into EndpointMap
Because many of the service endpoints URLs use the same patterns for
generating the URLs it makes sense to use the same templates to reduce
the copy and paste.
In the process also adds support for explicitly specifying hostnames
for use in the endpoints. Note: DNS must be pre-configured. The
Heat templates do not directly configure DNS.
Change-Id: Ie3270909beca3d63f2d7e4bcb04c559380ddc54d
Co-Authored-By: Juan Antonio Osorio Robles <jaosorior@redhat.com>
Jenkins [Wed, 11 Nov 2015 02:32:30 +0000 (02:32 +0000)]
Merge "Enable glance-api show_image_direct_url for COW"
Jenkins [Wed, 11 Nov 2015 02:21:17 +0000 (02:21 +0000)]
Merge "Revert "Manage keystone initialization directly in t-h-t manifests""
Code Review / apex-tripleo-heat-templates.git / log