apex-tripleo-heat-templates.git
10 years agoCorrect overcloud template to inherit passthrough
Nicholas Randon [Wed, 30 Jul 2014 09:17:56 +0000 (10:17 +0100)]
Correct overcloud template to inherit passthrough

Inherit passthrough from nova-compute-instance.yaml, rather than
having an exact copy in overcloud-source.yaml.

Change-Id: I4f5a4a7be5835cb68755734aa72f8d9670cba0d4

10 years agoRename NovaCompute0Config to NovaCompute0Deploy
Nicholas Randon [Wed, 30 Jul 2014 09:11:12 +0000 (10:11 +0100)]
Rename NovaCompute0Config to NovaCompute0Deploy

Rename NovaCompute0Config to NovaCompute0Deploy as this makes
the structured deployment name match the one in
nova-compute-instance.yaml.

Change-Id: I79f66c09006aa7f7118af1f48e1f6f10b87daec6

10 years agocontroller0AllNodesConfig to controller0AllNodes.
Nicholas Randon [Tue, 29 Jul 2014 13:02:42 +0000 (14:02 +0100)]
controller0AllNodesConfig to controller0AllNodes.

Rename all occurrences of controller0AllNodesConfig to
controller0AllNodes as this is in line with compute node
deployments. Also the current naming is confusing as this is a
deployment step not a configuration step.

Change-Id: I8efa3b6a64a099e1e8ee43009472152aed5f8ad8

10 years agoMerge "Remove nova-compute-group.yaml"
Jenkins [Thu, 31 Jul 2014 05:43:13 +0000 (05:43 +0000)]
Merge "Remove nova-compute-group.yaml"

10 years agoMerge "Add signal_transport property"
Jenkins [Mon, 28 Jul 2014 08:42:55 +0000 (08:42 +0000)]
Merge "Add signal_transport property"

10 years agoMerge "Add user_data_format"
Jenkins [Mon, 28 Jul 2014 08:42:19 +0000 (08:42 +0000)]
Merge "Add user_data_format"

10 years agoRemove nova-compute-group.yaml
Alexis Lee [Thu, 24 Jul 2014 16:51:55 +0000 (17:51 +0100)]
Remove nova-compute-group.yaml

This file is not used.

Change-Id: Ic03fb3402b3164c7c99cf02040f3a5e5abf6a9e9

10 years agoMerge "Fix SSL with HAProxy."
Jenkins [Fri, 25 Jul 2014 18:24:06 +0000 (18:24 +0000)]
Merge "Fix SSL with HAProxy."

10 years agoAdd signal_transport property
James Slagle [Thu, 17 Jul 2014 15:53:25 +0000 (11:53 -0400)]
Add signal_transport property

Specify NO_SIGNAL for signal_transport on the BlockStorage0Deployment
resource.  Otherwise, this resource remains CREATE_IN_PROGRESS forever.

Change-Id: I973d197245ed32612bde9209479e6ae3a443fc69

10 years agoAdd user_data_format
James Slagle [Thu, 17 Jul 2014 15:15:09 +0000 (11:15 -0400)]
Add user_data_format

user_data_format must be set to SOFTWARE_CONFIG on instances of
OS::Nova::Server where there are deployments. Corrects the following
error:

ERROR: Resource BlockStorage0's property user_data_format should be set
to SOFTWARE_CONFIG since there are software deployments on it.

Change-Id: Iba29588374980098d71585ff1bf26ad914a6711c

10 years agoMerge "Remove extra list"
Jenkins [Tue, 22 Jul 2014 19:20:35 +0000 (19:20 +0000)]
Merge "Remove extra list"

10 years agoMerge "Define and bind a public virtual IP"
Jenkins [Tue, 22 Jul 2014 16:28:34 +0000 (16:28 +0000)]
Merge "Define and bind a public virtual IP"

10 years agoDefine and bind a public virtual IP
James Polley [Fri, 20 Jun 2014 07:28:57 +0000 (17:28 +1000)]
Define and bind a public virtual IP

Prior to this change our heat templates define one virtual IP, which all
the services are bound to.

We wish to be able to segregate these endpoints: some need to be
accessible to "the public"; some are only intended to be accessed within
the cloud; some are only for admin use.

This change adds a second VIP which we can use for binding only the
endpoints that are intended to be publicly accessible, leaving the older
VIP to be used for internal end points.

Haproxy is told to also listen on that new VIP so that we can expose selected
services via the new VIP, and keepalived is in charge of assigning the VIP to
control plane nodes.

This change has a proposed split of services between control-only and
control+public interfaces. Assuming our yaml parsers (in merge.py and
Heat) understand YAML anchors/aliases, and assuming I've got the syntax
right, this should get expanded so that all the control+public services
get their config defined from the same block without needing to repeat
it for each service. (AFAICT both merge.py and heat use pyyaml, which
does support aliases/anchors)

The default is left at binding to only the controlplane interface, so
that new services added to this map will default to being internal-only

This patchset partially completes a spec which will one day live at
https://blueprints.launchpad.net/tripleo/+specs/tripleo-juno-virtual-public-ips
but for now can bee seen in  Id9addc65f0d2ed519ce4b3edbd561ed660a2786e

Implements: blueprint tripleo-juno-virtual-public-ips
Change-Id: I9649ee74ebaf62b6b929b28243a07c789a08867c
Co-Authored-By: Robert Collins <rbtcollins@hp.com>
Partial-Bug #1325114

10 years agoMerge "expose glance_port,protocol as glance.port,protocol"
Jenkins [Tue, 22 Jul 2014 06:55:32 +0000 (06:55 +0000)]
Merge "expose glance_port,protocol as glance.port,protocol"

10 years agoMerge "merge.py use a class to represent template syntax"
Jenkins [Tue, 22 Jul 2014 03:46:25 +0000 (03:46 +0000)]
Merge "merge.py use a class to represent template syntax"

10 years agoFix SSL with HAProxy.
Robert Collins [Fri, 18 Jul 2014 08:56:23 +0000 (20:56 +1200)]
Fix SSL with HAProxy.

The current configuration of services is that if SSL is in use (signaled by
stunnel.connect_ip) we bind to 127.0.0.1 - which is great, but it breaks
simultaneous non-SSL due to there being no pass-through stunnel equivalent on
all the nodes. As an interim measure, teach stunnel to connect to the ctlplane
address instead. We will need this flexability in future anyway to deal with
mixed-mode configurations, but we don't yet have an SSL only configuration.

The change will permit SSL only by altering the Deployment object only - the
SSL config object should now be flexible enough to run in either mode (but as
yet on an all-one-way-or-the-other basis).

Change-Id: Ibac3dec1fe7b573029482fdd9ad2d2f6223fbce0

10 years agoMerge "make keystone.host point to controller_virtual_ip"
Jenkins [Fri, 18 Jul 2014 09:21:24 +0000 (09:21 +0000)]
Merge "make keystone.host point to controller_virtual_ip"

10 years agoMerge "Add corosync and pacemaker properties into overcloud template"
Jenkins [Fri, 18 Jul 2014 07:56:39 +0000 (07:56 +0000)]
Merge "Add corosync and pacemaker properties into overcloud template"

10 years agomerge.py use a class to represent template syntax
Steve Baker [Mon, 7 Jul 2014 23:41:31 +0000 (11:41 +1200)]
merge.py use a class to represent template syntax

Defining cfn template syntax as class attributes will make it easier
to port merge.py to HOT just by setting lang to a different class.

Change-Id: I2547333d727bf91cd3159790f0f20f4d10195a9c
Partial-Blueprint: tripleo-juno-remove-mergepy

10 years agoMerge "make glance.host point to controller_virtual_ip"
Jenkins [Thu, 17 Jul 2014 18:19:57 +0000 (18:19 +0000)]
Merge "make glance.host point to controller_virtual_ip"

10 years agoMerge "use ControlVirtualInterface for keepalived VRRP"
Jenkins [Thu, 17 Jul 2014 18:19:05 +0000 (18:19 +0000)]
Merge "use ControlVirtualInterface for keepalived VRRP"

10 years agoMerge "add Horizon caches backend definition (memcached)"
Jenkins [Thu, 17 Jul 2014 18:15:15 +0000 (18:15 +0000)]
Merge "add Horizon caches backend definition (memcached)"

10 years agoRemove extra list
James Slagle [Thu, 17 Jul 2014 15:13:34 +0000 (11:13 -0400)]
Remove extra list

We are using "ctlplane" as the first parameter to Fn::Select here, so
the second parameter must be a map, not a list. Fixes the following
error:

ERROR: Property error : BlockStorage0Deployment: input_values Index to
"Fn::Select" must be an integer

Change-Id: I34153543f8c3152df449e1b42e1f76a78a7d6ba3

10 years agoexpose glance_port,protocol as glance.port,protocol
Ryan Moore [Fri, 11 Jul 2014 13:51:39 +0000 (14:51 +0100)]
expose glance_port,protocol as glance.port,protocol

These values are available in metadata with underscores but
they are accessed by nova with dots.
Make them available with dots.

Required by: Idccc0d60c9f6b17a853c6de1bbea64bfc7e028b2
Change-Id: I5fe952f850339465de128e56e45c9bbda011ce7f

10 years agoMerge "Use the right DSN for neutron agents."
Jenkins [Fri, 11 Jul 2014 03:46:45 +0000 (03:46 +0000)]
Merge "Use the right DSN for neutron agents."

10 years agoadd Horizon caches backend definition (memcached)
Giulio Fidente [Mon, 7 Jul 2014 20:57:11 +0000 (22:57 +0200)]
add Horizon caches backend definition (memcached)

This change adds into the overcloud-source template a structure
name horizon.caches meant to define the Horizon caches backend.
It defaults to using memcached and provides a list of the
memcached nodes in horizon.caches.memcached.nodes

Related to blueprint tripleo-icehouse-ha-production-configuration

Change-Id: I728e05926f2de0e867fb8e8c74c63947da7d987a

10 years agomake glance.host point to controller_virtual_ip
Giulio Fidente [Thu, 10 Jul 2014 04:44:57 +0000 (06:44 +0200)]
make glance.host point to controller_virtual_ip

Previously glance.host was pointing to the local controller_host
which would have requests to glance from other services to fail
if the local glance daemon was unavailable.

Change-Id: Ifd4f4b12cd51e23313826288797cc00ba3cd1754

10 years agomake keystone.host point to controller_virtual_ip
Giulio Fidente [Thu, 10 Jul 2014 04:10:41 +0000 (06:10 +0200)]
make keystone.host point to controller_virtual_ip

Previously keystone.host was pointing to the local controller_host
which would have caused all local services to become unavailable
if keystone was to go down.

Closes-Bug: #1339986
Change-Id: I9b73595d3e0ae6e872aa6b7e0f93354ff04f2956

10 years agouse ControlVirtualInterface for keepalived VRRP
Giulio Fidente [Thu, 10 Jul 2014 03:48:05 +0000 (05:48 +0200)]
use ControlVirtualInterface for keepalived VRRP

Change keepalived.keepalive_interface so that it uses the actual
ControlVirtualInterface (bridge) for VRRP rather than the bridged
interface (NeutronPublicInterface).

Fixes the issue which caused keepalived to bring up the VIP on
all control nodes.

Change-Id: Ifc484d6a6086d9872210aa576f21d326f60b7d35

10 years agoMerge "Make target to validate a template"
Jenkins [Wed, 9 Jul 2014 01:03:18 +0000 (01:03 +0000)]
Merge "Make target to validate a template"

10 years agoAdd corosync and pacemaker properties into overcloud template
Jan Provaznik [Tue, 8 Jul 2014 08:41:18 +0000 (04:41 -0400)]
Add corosync and pacemaker properties into overcloud template

Pacemaker will be used for managing ceilometer central agent,
we need basic metadata to setup corosync and pacemaker.

Related to: Ifa83d62c2132bcdcb40d0b7c80ce3adadc0b5587

Change-Id: I44909005d9bc653c3e7c2de1c12fe4ffecf6bede

10 years agoMake target to validate a template
Steve Baker [Tue, 8 Jul 2014 01:27:07 +0000 (13:27 +1200)]
Make target to validate a template

This adds make targets to run heat template-validate against the
generated templates.

These targets assume that credentials to a valid heat endpoint
have been sourced.

The target validate-all will validate every template in
generated_templates, but there is also a target created for each
template, for example:

  make validate-overcloud.yaml

This is a useful aid for
Partial-Blueprint: tripleo-juno-remove-mergepy

Change-Id: Id101402b8b2fa0bc6058c5bc4b7474f0f6a158ad

10 years agoSpecify the network for nodes
Robert Collins [Wed, 2 Jul 2014 03:14:19 +0000 (15:14 +1200)]
Specify the network for nodes

Without this, when there are multiple admin networks (e.g. a VLAN)
Nova will refuse to guess and we'll fail to deploy.

Change-Id: Id1dca43ef287fda2adcfdf5b5d30145b055dbe76

10 years agoMake stack complete depend on all nodes
Clint Byrum [Thu, 3 Jul 2014 16:08:47 +0000 (09:08 -0700)]
Make stack complete depend on all nodes

Previously the completion signal was just based on the first run of
os-refresh-config. But in this case, we actually need to wait until it
runs successfully with all hosts computed. That way we can know that
services aren't in an unstable state while that configuration rolls out.

Change-Id: I3b965c19c92b366df3069cb8e1daffa18252c884
Closes-Bug: #1337230

10 years agoMerge "Enable multi-node rabbitmq cluster"
Jenkins [Wed, 2 Jul 2014 18:16:24 +0000 (18:16 +0000)]
Merge "Enable multi-node rabbitmq cluster"

10 years agoMerge "Compute all hosts matrix once"
Jenkins [Wed, 2 Jul 2014 03:30:52 +0000 (03:30 +0000)]
Merge "Compute all hosts matrix once"

10 years agoEnable multi-node rabbitmq cluster
Jan Provaznik [Mon, 9 Jun 2014 07:36:24 +0000 (03:36 -0400)]
Enable multi-node rabbitmq cluster

This causes that:
* rabbit.nodes is list of all control nodes
* rabbit_hosts in OS config files points to all nodes in
  rabbitmq cluster
* overcloud control nodes are joined into cluster

This works both for single or multiple control nodes and it's needed
for scaling out control nodes.

rabbit.nodes property is very similar to generating list of all hosts,
so it uses same StructuredConfig block. This block (and couple of references)
is renamed to allNodesConfig to make it more general.

Related to blueprint tripleo-icehouse-ha-production-configuration

Change-Id: Ice1a34ba7a52c41c1bb0c63350438971c651e7b6

10 years agoMerge "Add galera clustering properties"
Jenkins [Mon, 30 Jun 2014 18:14:04 +0000 (18:14 +0000)]
Merge "Add galera clustering properties"

10 years agoCompute all hosts matrix once
Clint Byrum [Wed, 4 Jun 2014 07:42:29 +0000 (00:42 -0700)]
Compute all hosts matrix once

Then feed in through separate deployments. This reduces the exponential
growth of calculating the entire list for every server.

Change-Id: Ib1187eabeb91b46e29ddcf5065056e43a69bb2a0

10 years agoMerge "Haproxy configuration"
Jenkins [Mon, 30 Jun 2014 08:22:25 +0000 (08:22 +0000)]
Merge "Haproxy configuration"

10 years agoAdd galera clustering properties
Gregory Haynes [Fri, 28 Mar 2014 20:00:08 +0000 (13:00 -0700)]
Add galera clustering properties

Adding nodes and cluster_name properties for mysql in order to enable
galera clustering.

Change-Id: I522b7324460469c59f49983ca3becd9ea914cdc0

10 years agoHaproxy configuration
Dima Shulyak [Wed, 14 May 2014 12:20:12 +0000 (15:20 +0300)]
Haproxy configuration

Added several sections that are required for HAproxy configuration

1. haproxy.services - standard openstack services ports
2. haproxy.nodes - openstack controllers
3. haproxy.net_binds - virtual ips, that will also act as public endpoint

input controller_nodes scales with OVERCLOUD_CONTROLSCALE > 1

Related change t-i-e I641fa90c4a34c26e5699cf7f5a6f9643792c7b16

Implements blueprint tripleo-haproxy-configuration
Related to blueprint tripleo-icehouse-ha-production-configuration

Change-Id: I9c70812ee1b3e8c8c072705fc5123da88ecc8f9f

10 years agoUse the right DSN for neutron agents.
Robert Collins [Thu, 19 Jun 2014 02:36:07 +0000 (14:36 +1200)]
Use the right DSN for neutron agents.

Since the wrong one is a bad idea :)

Change-Id: I7ed40078f487459dee9055ef41f10a9b60a0e674

10 years agoMerge "Set glance protocol and port as Heat configurable"
Jenkins [Fri, 27 Jun 2014 07:53:53 +0000 (07:53 +0000)]
Merge "Set glance protocol and port as Heat configurable"

10 years agoAdd parameters for setting up keystone keys/certs in undercloud
Jan Provaznik [Tue, 24 Jun 2014 10:55:20 +0000 (12:55 +0200)]
Add parameters for setting up keystone keys/certs in undercloud

This will allow us distribute identical keys/certs to all
control nodes in HA mode.

CAKey was removed because it's not required by keystone.

Change-Id: I187492d5fac448e57f8cd687f9cb751520df5921

10 years agoMerge "Add custom public IP support to the undercloud."
Jenkins [Fri, 20 Jun 2014 18:55:45 +0000 (18:55 +0000)]
Merge "Add custom public IP support to the undercloud."

10 years agoSet glance protocol and port as Heat configurable
Ryan Moore [Thu, 3 Apr 2014 15:37:54 +0000 (16:37 +0100)]
Set glance protocol and port as Heat configurable

This change is to set the glance protocol and port as
configurable via the Heat template. Presently the port is
hard-coded in the elements nova.conf file, and the protocol
is assumed as being the default (http).

This change will allow the glance_api_servers
to be set (in nova.conf) using the constituent parts:
    glance_protocol://glance_host:glance_port

Change to nova.conf to read this value is:
    Idccc0d60c9f6b17a853c6de1bbea64bfc7e028b2

Default port value is set to the nova default(9292) which is
currently hard-coded in the elements nova.conf file.
Default protocol value is set to the nova default(http).

Change-Id: I3c7218292797c62c36e2aaab4f325bf053ef140b

10 years agoMerge "Use virtual ip for OS services"
Jenkins [Mon, 16 Jun 2014 05:24:38 +0000 (05:24 +0000)]
Merge "Use virtual ip for OS services"

10 years agoMerge "Add parameters for setting up keystone keys/certs"
Jenkins [Wed, 11 Jun 2014 09:53:31 +0000 (09:53 +0000)]
Merge "Add parameters for setting up keystone keys/certs"

10 years agoMerge "Remove the tuskar-source template"
Jenkins [Tue, 10 Jun 2014 20:09:36 +0000 (20:09 +0000)]
Merge "Remove the tuskar-source template"

10 years agoUse virtual ip for OS services
Jan Provaznik [Mon, 9 Jun 2014 10:27:29 +0000 (06:27 -0400)]
Use virtual ip for OS services

VIP should be used when pointing an OS service to
another OS service in config files (most typical is
setting Keystone's host IP, but also Glance and Netron
host needs to be set in Nova config file).

Change-Id: Id91e6ef2747981f17a43afd279d4eebaad01fe4d

10 years agoReplace nagios3 template with HOT rewrite
Clint Byrum [Mon, 28 Apr 2014 08:42:53 +0000 (01:42 -0700)]
Replace nagios3 template with HOT rewrite

Rewrote template from scratch using HOT. Mail delivery does not work yet
but it does produce Nagios.

Change-Id: I347f8a008aa7db1145da0988053c791e6f2dbbc2

10 years agoMerge "Add Controller scale param to merge.py"
Jenkins [Fri, 6 Jun 2014 15:13:50 +0000 (15:13 +0000)]
Merge "Add Controller scale param to merge.py"

10 years agoSetup SSL for Ceilometer
Rob Parker [Wed, 28 May 2014 20:39:59 +0000 (20:39 +0000)]
Setup SSL for Ceilometer

Establish the Public (SSL) port, 13777, and connect it to the internal port, 8777

Change-Id: I7bba7f8224b6e31fc4f5444eee679ca5a4ce4ebe

10 years agoRemove the tuskar-source template
Tomas Sedovic [Wed, 4 Jun 2014 10:16:24 +0000 (12:16 +0200)]
Remove the tuskar-source template

There is no need for a tuskar-specific undercloud template. Tuskar is
installed via elements just like any other undercloud service.

This template is not being used in devtest and I'm not sure it ever has
been.

Change-Id: I531d927b1984873b32f440d33a130788670f7cd9

10 years agoMerge "Add passthrough configuration glue."
Jenkins [Wed, 4 Jun 2014 08:46:24 +0000 (08:46 +0000)]
Merge "Add passthrough configuration glue."

10 years agoMerge "Fixes to swift-storage-source.yaml"
Jenkins [Wed, 4 Jun 2014 06:48:54 +0000 (06:48 +0000)]
Merge "Fixes to swift-storage-source.yaml"

10 years agoAdd custom public IP support to the undercloud.
Robert Collins [Fri, 30 May 2014 19:57:00 +0000 (07:57 +1200)]
Add custom public IP support to the undercloud.

Now we're trying to automate VLAN deployed underclouds, this
suddenly becomes relevant.

Change-Id: I800a0ceab7443d685551d7a919724f6cf45fd891

10 years agoAdd passthrough configuration glue.
Nicholas Randon [Fri, 2 May 2014 15:52:18 +0000 (16:52 +0100)]
Add passthrough configuration glue.

This provides a means for users to pass configuration through to the
machines they are deploying without us modelling that.

Change-Id: Ia8d1564bd0f3e7b988497a84e00831619047cd94

10 years agoMove to software-config for the undercloud.
Nicholas Randon [Fri, 2 May 2014 15:52:18 +0000 (16:52 +0100)]
Move to software-config for the undercloud.

Change the undercloud deployment to use software-config similar to
that used by the overcloud.

Change-Id: I81bced2062e461fe10301969d856d709c0b573c3

10 years agoMerge "Sequence deploys - compute after control plane."
Jenkins [Tue, 3 Jun 2014 11:22:36 +0000 (11:22 +0000)]
Merge "Sequence deploys - compute after control plane."

10 years agoMove bootstrap-host out from bootstack
Gregory Haynes [Mon, 2 Jun 2014 17:15:20 +0000 (10:15 -0700)]
Move bootstrap-host out from bootstack

We have had a change of opinion and are moving bootstrap_host properties
out of bootstack in order to prevent mysql / rabbit from depending on
boot-stack.

Change-Id: I85399019c5fc448e98362ef832988abc8d9d459d

10 years agoMerge "ssl: Add support for a CA Certificate"
Jenkins [Fri, 30 May 2014 16:50:50 +0000 (16:50 +0000)]
Merge "ssl: Add support for a CA Certificate"

10 years agoExport new bootstack keys for cluster init.
Robert Collins [Wed, 28 May 2014 04:26:21 +0000 (16:26 +1200)]
Export new bootstack keys for cluster init.

These provide a single consistent interface for checking whether
a given node is the bootstrap node, or not the bootstrap node
for database initialisation etc.

Change-Id: I7c5a09cb3477b61c4050e4a47a680ffc9aee97d8

10 years agoAdd Controller scale param to merge.py
Gregory Haynes [Wed, 16 Apr 2014 21:14:47 +0000 (14:14 -0700)]
Add Controller scale param to merge.py

We need a paremeter to attempt scaling of the Controller resources in
merge.py.

Change-Id: I4a79059e72850da4a5a3fe30dbb9df92a9dca212

10 years agoFixes to swift-storage-source.yaml
Eamonn O'Toole [Wed, 7 May 2014 16:03:48 +0000 (17:03 +0100)]
Fixes to swift-storage-source.yaml

We've found a couple of bugs in swift-storage-source.yaml which
were exposed when we tried to use the template to build a second
Swift storage node.  These errors are:
a. Error in swift-devices metadata description - indentation
   wasn't correct and a "-" was missing
b. Keystone config data required by the swift-proxy element
   weren't defined
c. The signal_transport property wasn't defined and set to
   NO_SIGNAL for SwiftStorage0Deploy (this meant that the
   completion condition for the resource was never satisfied)
d. The user_data_format property for the SwiftStorage0
   resource was not defined and set to SOFTWARE_CONFIG, which
   meant that the SwiftStorage servers never got their config data
We've fixed the above errors.  We've added an
OS::Heat::StructuredConfig and corresponding
OS::Heat::StructuredDeployment for the Keystone config data.

Change-Id: I858ebf9eea4ed33987143277f4c986b4934555d1

10 years agoMerge "Use vip address where controller0 was used for endpoints"
Jenkins [Wed, 21 May 2014 18:53:56 +0000 (18:53 +0000)]
Merge "Use vip address where controller0 was used for endpoints"

10 years agoMerge "Adding Swift proxy-server memcache metadata"
Jenkins [Wed, 21 May 2014 13:06:42 +0000 (13:06 +0000)]
Merge "Adding Swift proxy-server memcache metadata"

10 years agoAdd parameters for setting up keystone keys/certs
Jan Provaznik [Wed, 21 May 2014 06:06:24 +0000 (02:06 -0400)]
Add parameters for setting up keystone keys/certs

This will allow us distribute identical keys/certs to all
control nodes in HA mode.

Change-Id: Ie84f3897717c02e196a405746865996c0a929977

10 years agoUse vip address where controller0 was used for endpoints
Dima Shulyak [Mon, 19 May 2014 09:24:21 +0000 (12:24 +0300)]
Use vip address where controller0 was used for endpoints

This change is required to resolve scaling issue for
OVERCLOUD_CONTROLSCALE > 1

Basicly change affected all the places where endpoints
were configured to use controller0 ctlplane ip address

Change-Id: I76eb9d2b81d3ef5e9fae408f2432515f4de13e12

10 years agoMerge "Configure NTP for overcloud compute"
Jenkins [Tue, 20 May 2014 16:30:17 +0000 (16:30 +0000)]
Merge "Configure NTP for overcloud compute"

10 years agossl: Add support for a CA Certificate
Stuart McLaren [Thu, 3 Apr 2014 16:30:24 +0000 (16:30 +0000)]
ssl: Add support for a CA Certificate

Add SSLCACertificate to the overcloud yaml.

This allows a CA certificate to be specified in cases where the Cert
does not come from a CA in the system bundle.

Partially implements: blueprint tripleo-ssl-overcloud

Full set of blueprint changes:

https://review.openstack.org/#/c/85098
https://review.openstack.org/#/c/85099
https://review.openstack.org/#/c/85100

Change-Id: I67d7c1362df323762023be5c74fbe75b1583570c

10 years agoMerge "Specify group os-apply-config for config resources"
Jenkins [Tue, 20 May 2014 15:56:07 +0000 (15:56 +0000)]
Merge "Specify group os-apply-config for config resources"

10 years agoMerge "Adding SNMPd auth credentials"
Jenkins [Fri, 16 May 2014 12:44:25 +0000 (12:44 +0000)]
Merge "Adding SNMPd auth credentials"

10 years agoSequence deploys - compute after control plane.
Robert Collins [Thu, 15 May 2014 20:49:15 +0000 (08:49 +1200)]
Sequence deploys - compute after control plane.

The control plane has to be up before the compute deployments can
work. By sequencing these we permit stopping the o-r-c scripts in
the overcloud rather than trying and failing to configure things.

It also reduces the total deploy time by front loading control
plane configuration - Heat has some sequence code which prevents
parallel instantiation on deployments, and the control plane bring
up is critical path for deploying OpenStack.

Change-Id: I0bb2f8ab41c4af1443af60f7547673d495e4e0fb

10 years agoIntroduce configurable virtual ip in templates
Dima Shulyak [Tue, 22 Apr 2014 12:52:43 +0000 (15:52 +0300)]
Introduce configurable virtual ip in templates

added ControlVirtualIP resource of type OS::Neutron::Port

Added ControlVirtualInterface - by default br-ex

To specify the IP address to use as ControlVirtualIP,
or for any others custom needs, you could provide:

-P 'ControlFixedIPs=[{"ip_address" : "192.0.2.251"}]'

Related to blueprint tripleo-icehouse-ha-production-configuration

Change-Id: Ie82750ac1537c80311a869880f636bda59ca5c58

10 years agoDefer to element mysql.innodb_buffer_pool_size
Clint Byrum [Thu, 8 May 2014 15:33:01 +0000 (08:33 -0700)]
Defer to element mysql.innodb_buffer_pool_size

Choosing 100MB here is not a production default. We also don't need two
places with the default value set. The closer a default is to the actual
usage of it, the better, so we'll set 0 here, which will defer to the
default in the element.

Change-Id: I1b41b604286245c2fb83249778db835253c02fc5

10 years agoMerge "Add NeutronControlPlaneID parameter"
Jenkins [Thu, 8 May 2014 03:34:02 +0000 (03:34 +0000)]
Merge "Add NeutronControlPlaneID parameter"

10 years agoMerge "Make size of loop device used by cinder LVM configurable"
Jenkins [Wed, 7 May 2014 13:11:17 +0000 (13:11 +0000)]
Merge "Make size of loop device used by cinder LVM configurable"

10 years agoAdd NeutronControlPlaneID parameter
Dmitry Shulyak [Fri, 2 May 2014 05:06:57 +0000 (08:06 +0300)]
Add NeutronControlPlaneID parameter

Creation of OS::Neutron::Port requires network_id parameter
OS::Neutron::Port will be used for VIP creation

Creating port for network by name, e.g:
neutron port-create ctlplane
works only with neutron cli

Change-Id: Ia8bd6f700a4897efd277fd67189d2e04ad716b87

10 years agoMerge "Increase PXE deployment timeout for overcloud"
Jenkins [Mon, 5 May 2014 22:12:03 +0000 (22:12 +0000)]
Merge "Increase PXE deployment timeout for overcloud"

10 years agoConfigure NTP for overcloud compute
Dan Prince [Fri, 18 Apr 2014 21:04:54 +0000 (17:04 -0400)]
Configure NTP for overcloud compute

Updates the overcloud nova-compute templates so that
the NTP server is properly configured.

Change-Id: I4fc407153da5e031dcf5e5e5e1b3b74d932dba45
Partial-bug: #1309677

10 years agoSpecify group os-apply-config for config resources
Steve Baker [Fri, 2 May 2014 04:02:35 +0000 (16:02 +1200)]
Specify group os-apply-config for config resources

This will indicate to os-collect-config that this config
resource represents os-apply-config configuration data,
so it can only write out top-level config files for
os-apply-config data (or Heat::Ungrouped for backwards
compatibility).

Change-Id: I3552fdd6df8106ab83cfd17d5f4b137cf33fbc36
Related-Bug: #1299109

10 years agoScale the control plane in hosts files.
Robert Collins [Wed, 23 Apr 2014 01:23:15 +0000 (13:23 +1200)]
Scale the control plane in hosts files.

Being able to figure out the hypervisors from the control nodes seems
useful, and equally all the hypervisors should know about all the
control nodes (at least until we have virtual IPs all in place), and
lastly the control plane need to know each other by hostname.

Change-Id: I92877501c58d8c210e7b2c94935e107355271fb9

10 years agoAdding SNMPd auth credentials
Ladislav Smola [Fri, 25 Apr 2014 12:06:46 +0000 (14:06 +0200)]
Adding SNMPd auth credentials

-Undercloud Ceilometer has to have access to SNMPd credentials,
 so it can poll the Overcloud nodes
-In every Overcloud node, we need to set the same cretentials
 to SNMPd.conf

Change-Id: Icf7c0c1772b6380b7136108e61c15cafe17274ba

10 years agoMake size of loop device used by cinder LVM configurable
Duncan Thomas [Thu, 17 Apr 2014 17:28:05 +0000 (13:28 -0400)]
Make size of loop device used by cinder LVM configurable

This was hard-coded to 5 gig, which is useless for anything other
than tempest runs and smoke testing

block-storage-nfs.yaml has intentionally not been changed, since
volume_size_mb is not used in that setup. Cleaning up that code will
be done separately.

Change-Id: I476b906a8d439d3e6643dd0c214965c5862418e8

10 years agoIncrease PXE deployment timeout for overcloud
Matthew Gilliard [Thu, 10 Apr 2014 08:39:21 +0000 (09:39 +0100)]
Increase PXE deployment timeout for overcloud

The PXE deployment often times out on baremetal deployment with >5
overcloud nodes because the time being measured includes the
dd of the image, which can be slow when many images are sent
from the same undercloud host.

Ideally we'd make the image sizes smaller, and/or make the
undercloud cache the images more sanely.  It would also be
possible to split the timout to measure dd-time and boot-time
separately, but for now we just make the timeout configurable so
a user can raise it if they have problems.

Change-Id: I15540eec7a68eab4c9d128b65a95b1c0a2b64582
Co-Author: nicholas.randon@hp.com

10 years agoExpose dnsmasq options
James Slagle [Tue, 25 Mar 2014 12:34:29 +0000 (08:34 -0400)]
Expose dnsmasq options

Adds a new parameter, NeutronDnsmasqOptions, to the overcloud template.

Allows the ability to set dnsmasq options for neutron dhcp agent. This
will allow us to configure mtu to be 1400 for tenant instances on the
overcloud.  This should help with poor network performance and vm's that
are just plain unreachable via ssh due to the GRE tunnel overhead.

The default here has been set to:
dhcp-option-force=26,1400

This is the recommended way to configure OpenStack with the Open vSwitch
plugin per:
http://docs.openstack.org/admin-guide-cloud/content/openvswitch_plugin.html

All the documentation I can find on the web (openstack-dev,
ask.openstack.org, etc), recommend applying this setting. Others have
reported slow vm performance as well, and this resolves that issue
(apparently anyway...we'd need to test).

Change-Id: If24326045987b5a484ba2f71f591092987966536
Partial-Bug: #1270646

10 years agoMerge "Add passthrough configuration glue."
Jenkins [Tue, 22 Apr 2014 19:20:08 +0000 (19:20 +0000)]
Merge "Add passthrough configuration glue."

10 years agoMerge "Adding undercloud ceilometer"
Jenkins [Fri, 18 Apr 2014 10:27:47 +0000 (10:27 +0000)]
Merge "Adding undercloud ceilometer"

10 years agoAdd passthrough configuration glue.
Robert Collins [Wed, 16 Apr 2014 04:08:45 +0000 (16:08 +1200)]
Add passthrough configuration glue.

This provides a means for users to pass configuration through to the
machines they are deploying without us modelling that.

Change-Id: I7134eb0c6be2d5cb1795b2f03cfba4afb69dc837
blueprint: passthrough-config

10 years agoAdding Swift proxy-server memcache metadata
Eamonn O'Toole [Tue, 8 Apr 2014 16:05:34 +0000 (17:05 +0100)]
Adding Swift proxy-server memcache metadata

Swift proxy-servers use memcache to store and share metadata. This
change adds swift.proxy-memcache metadata to the swift-source and
swift-storage-source yaml templates modelled on the existing
swift.devices metadata.  This metadata will be consumed by the
swift-proxy/os-config-applier/etc/swift/proxy-server.conf element
if the metadata exists.

Change-Id: If0b5724f69e7ec1c98e4dbdbeb9f08c4a18151b6

10 years agoAdding undercloud ceilometer
Ladislav Smola [Fri, 11 Apr 2014 10:48:23 +0000 (12:48 +0200)]
Adding undercloud ceilometer

-adding Undercloud Ceilometer that will collect statistics
 about Overcloud nodes, via SNMP

Change-Id: I1e90ad8d5bad16bc1c418ca2dbd78163abe6267c

10 years agoSwitch overcloud to software-config
Clint Byrum [Wed, 19 Mar 2014 22:16:32 +0000 (15:16 -0700)]
Switch overcloud to software-config

This migrates the overcloud to using OS::Heat::StructuredConfig and
OS::Heat::StructuredDeployment. With those tools, we can decouple
servers from software configuration and begin to deprecate features in
tripleo_heat_merge.

Change-Id: Ice85f0711e90d0fabf1d1bc4698201c4d6758508

10 years agoMerge "Stop using notCompute in favor of controller"
Jenkins [Fri, 11 Apr 2014 18:50:53 +0000 (18:50 +0000)]
Merge "Stop using notCompute in favor of controller"

10 years agoMerge "Adding NTP to undercloud template"
Jenkins [Thu, 10 Apr 2014 14:47:56 +0000 (14:47 +0000)]
Merge "Adding NTP to undercloud template"

10 years agoStop using notCompute in favor of controller
Dan Prince [Mon, 31 Mar 2014 18:12:49 +0000 (14:12 -0400)]
Stop using notCompute in favor of controller

Updates all references for notCompute and notcompute
to use 'controller' instead.

Change-Id: I70ef83f35064ab388bdc7e1a6da62b6585580010
Partial-bug: #1300324

10 years agoMerge "Add mysql innodb buffer pool size"
Jenkins [Tue, 8 Apr 2014 14:33:25 +0000 (14:33 +0000)]
Merge "Add mysql innodb buffer pool size"

10 years agoMerge "Allow setting the cinder iscsi-helper option"
Jenkins [Tue, 8 Apr 2014 00:09:14 +0000 (00:09 +0000)]
Merge "Allow setting the cinder iscsi-helper option"

10 years agoMerge "Add enable_tunneling to swift storage metadata"
Jenkins [Mon, 7 Apr 2014 20:31:32 +0000 (20:31 +0000)]
Merge "Add enable_tunneling to swift storage metadata"