apex-tripleo-heat-templates.git
8 years agoPLUMgrid Neutron integration
Qasim Sarfraz [Tue, 15 Dec 2015 12:36:11 +0000 (07:36 -0500)]
PLUMgrid Neutron integration

Enable PLUMgrid neutron liberty plugin in a TripleO overcloud environment.

Change-Id: I07025f67ec3f3399aac4dcd10cc37e857772548b
Signed-off-by: Qasim Sarfraz <qasims@plumgrid.com>
8 years agoMerge "compute: use live_migration_tunnelled"
Jenkins [Wed, 16 Mar 2016 16:20:26 +0000 (16:20 +0000)]
Merge "compute: use live_migration_tunnelled"

8 years agoMerge "Install mongodb client package"
Jenkins [Tue, 15 Mar 2016 21:29:59 +0000 (21:29 +0000)]
Merge "Install mongodb client package"

8 years agoMerge "Fix typos"
Jenkins [Tue, 15 Mar 2016 21:29:22 +0000 (21:29 +0000)]
Merge "Fix typos"

8 years agoMerge "Ensure access to Redis is password protected"
Jenkins [Tue, 15 Mar 2016 15:28:30 +0000 (15:28 +0000)]
Merge "Ensure access to Redis is password protected"

8 years agocompute: use live_migration_tunnelled
Emilien Macchi [Mon, 14 Mar 2016 16:21:18 +0000 (12:21 -0400)]
compute: use live_migration_tunnelled

In a previous patch [1], we added support for VIR_MIGRATE_TUNNELLED when
doing VM shared storage.

In Nova Mitaka [2] [3], we have now a parameter called
'live_migration_tunnelled' to whether or not use tunnelled migration.
It replaces 'block_migration_flag' and 'live_migration_flag' that are
both deprecated.

[1] https://review.openstack.org/#/c/286584/
[2] https://review.openstack.org/#/c/263436/
[3] https://review.openstack.org/#/c/263434/

Change-Id: I8b199b6e72c80b2df7b679e0a20e39f8400d0478

8 years agoMerge "compute: include VIR_MIGRATE_TUNNELLED when doing VM shared storage"
Jenkins [Mon, 14 Mar 2016 15:58:03 +0000 (15:58 +0000)]
Merge "compute: include VIR_MIGRATE_TUNNELLED when doing VM shared storage"

8 years agoMerge "Keystone domain for Heat"
Jenkins [Mon, 14 Mar 2016 12:30:37 +0000 (12:30 +0000)]
Merge "Keystone domain for Heat"

8 years agoMerge "Pass public_addr to ceph::profile::params instead of ceph::mon"
Jenkins [Fri, 11 Mar 2016 15:28:20 +0000 (15:28 +0000)]
Merge "Pass public_addr to ceph::profile::params instead of ceph::mon"

8 years agoMerge "Remove unused Neutron Agents container"
Jenkins [Fri, 11 Mar 2016 13:55:03 +0000 (13:55 +0000)]
Merge "Remove unused Neutron Agents container"

8 years agoMerge "Parameterize the heat-docker-agents image"
Jenkins [Fri, 11 Mar 2016 13:54:47 +0000 (13:54 +0000)]
Merge "Parameterize the heat-docker-agents image"

8 years agoMerge "Allow the containerized compute node to spawn larger VMs"
Jenkins [Fri, 11 Mar 2016 13:54:07 +0000 (13:54 +0000)]
Merge "Allow the containerized compute node to spawn larger VMs"

8 years agoMerge "Upgrades: quiet yum upgrade on cinder nodes"
Jenkins [Fri, 11 Mar 2016 13:37:58 +0000 (13:37 +0000)]
Merge "Upgrades: quiet yum upgrade on cinder nodes"

8 years agocompute: include VIR_MIGRATE_TUNNELLED when doing VM shared storage
Emilien Macchi [Tue, 1 Mar 2016 13:24:25 +0000 (08:24 -0500)]
compute: include VIR_MIGRATE_TUNNELLED when doing VM shared storage

This patch makes sure:

* When doing shared storage
Nova is configured with block_migration_flag and live_migration_flag = '(...),VIR_MIGRATE_TUNNELLED'
flag for security improvements.

* When not doing shared storage
Nova is not configured with VIR_MIGRATE_TUNNELLED flag because it's not
supported by Qemu yet. We need to make sure the value is unset otherwise
live migration will fail when not running shared storage for VMs.

Note: this patch will be backport to stable branches. In a further
iteration, we'll probably use live_migration_tunnelled new Nova
parameter which is a simplier way to manage this feature.

Co-Authored-By: Kashyap Chamarthy <kchamart@redhat.com>
Change-Id: I557c1624ee944a32b1831d504f7b189308cd1961

8 years agoMerge "Enable predictable IPs on non-controllers"
Jenkins [Thu, 10 Mar 2016 21:51:14 +0000 (21:51 +0000)]
Merge "Enable predictable IPs on non-controllers"

8 years agoMerge "Support the deployment of Ceph over IPv6"
Jenkins [Thu, 10 Mar 2016 21:35:50 +0000 (21:35 +0000)]
Merge "Support the deployment of Ceph over IPv6"

8 years agoMerge "Fix vncproxy_host for IPv6"
Jenkins [Thu, 10 Mar 2016 21:15:50 +0000 (21:15 +0000)]
Merge "Fix vncproxy_host for IPv6"

8 years agoMerge "Allow the vnc server to bind on IPv6 address on computes"
Jenkins [Thu, 10 Mar 2016 21:15:43 +0000 (21:15 +0000)]
Merge "Allow the vnc server to bind on IPv6 address on computes"

8 years agoMerge "Surround MongoDB IPs with braces in the connection string if IPv6"
Jenkins [Thu, 10 Mar 2016 21:09:57 +0000 (21:09 +0000)]
Merge "Surround MongoDB IPs with braces in the connection string if IPv6"

8 years agoMerge "Upgrades: initialization command/snippet"
Jenkins [Thu, 10 Mar 2016 18:34:01 +0000 (18:34 +0000)]
Merge "Upgrades: initialization command/snippet"

8 years agoMerge "Add a ceph-storage node upgrade script for the upgrade workflow"
Jenkins [Thu, 10 Mar 2016 18:32:47 +0000 (18:32 +0000)]
Merge "Add a ceph-storage node upgrade script for the upgrade workflow"

8 years agoSupport the deployment of Ceph over IPv6
Giulio Fidente [Mon, 25 Jan 2016 12:05:57 +0000 (13:05 +0100)]
Support the deployment of Ceph over IPv6

To deploy Ceph on IPv6, we need to enable ms_bind_ipv6 in addition
to passing the list of MON IPs in brackets.

Change-Id: I3644b8fc06458e68574afa5573f07442f0a09190

8 years agoFix vncproxy_host for IPv6
Javier Pena [Wed, 2 Mar 2016 09:57:50 +0000 (10:57 +0100)]
Fix vncproxy_host for IPv6

https://review.openstack.org/268356 can cause issues in IPv6
environments. It generates the following Hiera data:

nova::vncproxy::common::vncproxy_host: [2001:db8:fd00:1000::10]

which fails due to the brackets. Making sure there are no brackets
in nova_vncproxy_host makes it work for both the IP case and when
using DNS names.

Change-Id: Iafe18f042725eb9419d97cd674c4b9a1a895b187

8 years agoAllow the vnc server to bind on IPv6 address on computes
Marius Cornea [Thu, 21 Jan 2016 14:28:06 +0000 (15:28 +0100)]
Allow the vnc server to bind on IPv6 address on computes

Currently the vnc server on the compute nodes binds on 0.0.0.0.
which only works with IPv4 addresses, it breaks connectivity with
IPv6 addressing.

This fixes https://bugzilla.redhat.com/show_bug.cgi?id=1300678.

Change-Id: Id642d224fb3c62f786453dc684634adca1c2c09d
Co-Authored-By: Giulio Fidente <gfidente@redhat.com>
8 years agoSurround MongoDB IPs with braces in the connection string if IPv6
Giulio Fidente [Wed, 20 Jan 2016 12:01:21 +0000 (13:01 +0100)]
Surround MongoDB IPs with braces in the connection string if IPv6

Change-Id: I9ed917f32b3de95beb234ade4819a8b96affe3e9

8 years agoMerge "Upgrades: object storage node upgrade fix"
Jenkins [Thu, 10 Mar 2016 15:25:56 +0000 (15:25 +0000)]
Merge "Upgrades: object storage node upgrade fix"

8 years agoUpgrades: quiet yum upgrade on cinder nodes
Jiri Stransky [Thu, 10 Mar 2016 13:22:05 +0000 (14:22 +0100)]
Upgrades: quiet yum upgrade on cinder nodes

Yum update on cinder nodes should be quiet, as it is on controllers,
because results of these updates are sent to Heat. I mistakenly left
this out in the first patch because i used one of the standalone node
upgrade scripts as a copy/paste base for the cinder node upgrade script.

Change-Id: Id13190dc4d242317829c7994088183f52d21461d

8 years agoKeystone domain for Heat
Martin Mágr [Mon, 2 Mar 2015 10:04:20 +0000 (11:04 +0100)]
Keystone domain for Heat

This patch adds support for configuring Keystone domain for Heat
via heat-keystone-setup-domain script. It should be reverted
as soon as Keystone v3 is fully functional.

This patch won't be fully functional without either python-keystoneclient
fix [1] or workaround [2].

[1] https://bugs.launchpad.net/python-keystoneclient/+bug/1452298
[2] https://review.openstack.org/180563

Change-Id: Ie9cdd518b299c141f0fdbb3441a7761c27321a88
Co-Authored-By: Jiri Stransky <jistr@redhat.com>
Depends-On: Ic541f11978908f9344e5590f3961f0d31c04bb0c

8 years agoMerge "Upgrade of Cinder block storage nodes"
Jenkins [Thu, 10 Mar 2016 12:57:37 +0000 (12:57 +0000)]
Merge "Upgrade of Cinder block storage nodes"

8 years agoMerge "Updated the heat_template_version"
Jenkins [Thu, 10 Mar 2016 11:19:00 +0000 (11:19 +0000)]
Merge "Updated the heat_template_version"

8 years agoMerge "Fixup systemctl_swift stop/start during the controller upgrade"
Jenkins [Thu, 10 Mar 2016 10:22:25 +0000 (10:22 +0000)]
Merge "Fixup systemctl_swift stop/start  during the controller upgrade"

8 years agoEnable predictable IPs on non-controllers
Ben Nemec [Wed, 9 Mar 2016 16:41:03 +0000 (10:41 -0600)]
Enable predictable IPs on non-controllers

For the external loadbalancer work, we added the ability to specify
fixed ips for controller nodes on all network isolation networks.
In order to allow users full control over the placement and ip
addresses of deployed nodes, we need to be able to do the same thing
for the other node types.

Change-Id: I3ea91768b2ea3a40287f2f3cdb823c23533cf290

8 years agoRemove unused Neutron Agents container
Ryan Hallisey [Thu, 3 Mar 2016 15:33:36 +0000 (15:33 +0000)]
Remove unused Neutron Agents container

The Neutron Agents is currently not used. Refactor the heat templates
to accommodate for this change.

Change-Id: Ice3c5ce723fa16cfb66c2b0afbe51d7b282c3210

8 years agoAllow the containerized compute node to spawn larger VMs
Ryan Hallisey [Sat, 5 Mar 2016 01:28:24 +0000 (01:28 +0000)]
Allow the containerized compute node to spawn larger VMs

Atomic's root partition & logical volume defaults to 3G.
In order to launch larger VMs, we need to enlarge the root
logical volume and scale down the docker_pool logical volume.
We are allocating 80% of the disk space for vm data and the
remaining 20% for docker images.

Change-Id: If3fff78f476de23c7c51741a49bae227f2cdfe3e
Co-authored-by: Ian Main <imain@redhat.com>
Co-authored-by: Jeff Peeler <jpeeler@redhat.com>
8 years agoEnsure access to Redis is password protected
Giulio Fidente [Fri, 7 Aug 2015 11:03:05 +0000 (13:03 +0200)]
Ensure access to Redis is password protected

Depends-On: I1a8741b9e00775763911222cbe0af677b59e03a1
Change-Id: I373f97ada4e4101700a12b42dfb8ee4b2ff701f2

8 years agoMerge "Add Rabbit IPv6 only support"
Jenkins [Wed, 9 Mar 2016 14:31:40 +0000 (14:31 +0000)]
Merge "Add Rabbit IPv6 only support"

8 years agoUpgrades: object storage node upgrade fix
Jiri Stransky [Tue, 8 Mar 2016 09:51:31 +0000 (10:51 +0100)]
Upgrades: object storage node upgrade fix

The variables in the heredoc should be escaped because they should
evaluate only when the inner script runs, not when the outer "writer"
script runs.

Python-zaqarclient is installed for os-collect-config to work, as we do
on the other node types.

Swift-proxy is removed from list of services to stop/start, as
swift-proxy isn't supposed to run on the swift storage nodes.

Change-Id: I8426b859d11378ebdc3da94dcc090133dab0c628

8 years agoFixup systemctl_swift stop/start during the controller upgrade
marios [Wed, 9 Mar 2016 13:43:40 +0000 (15:43 +0200)]
Fixup systemctl_swift stop/start  during the controller upgrade

During the controller upgrade in
major_upgrade_controller_pacemaker_1.sh we use systemctl to stop
all swift services and then start them again in _pacemaker_2.sh

In the case of stand-alone swift nodes the deployer may have
used the ControllerEnableSwiftStorage: false so that only the
swift-proxy service is left on controllers (wrt swift). The
systemctl_swift function used during upgrades is changed to factor
this in.

Change-Id: Ib22005123429f250324df389855d0dccd2343feb

8 years agoUpgrades: initialization command/snippet
Jiri Stransky [Wed, 9 Mar 2016 10:18:40 +0000 (11:18 +0100)]
Upgrades: initialization command/snippet

This allows to run a command or a script snippet on all overcloud nodes
at the beginning of the upgrade. The intended use is to switch to a new
set of repositories on the overcloud. This is done differently in
different contexts (e.g. upstream vs. downstream), but generally it
should be simple enough to not warrant creation of switchable
"UpgradeInit" resource in the resource registry, and a string
command/snippet parameter should suffice.

Change-Id: I72271170d3f53a5179b3212ec9bae9a6204e29e6

8 years agoMerge "Add missing createUser line to /etc/snmp/snmpd.conf"
Jenkins [Wed, 9 Mar 2016 12:54:24 +0000 (12:54 +0000)]
Merge "Add missing createUser line to /etc/snmp/snmpd.conf"

8 years agoMerge "Change the CinderISCSIHelper to lioadm"
Jenkins [Wed, 9 Mar 2016 12:42:53 +0000 (12:42 +0000)]
Merge "Change the CinderISCSIHelper to lioadm"

8 years agoMake External Load Balancer templates work with IPv6
Dan Sneddon [Thu, 21 Jan 2016 09:41:46 +0000 (01:41 -0800)]
Make External Load Balancer templates work with IPv6

This change modifies the network isolation templates that allow for
fixed IP addresses on the controllers' IPs and VIPs, and makes them
compatible with IPv6 addresses.

The latest version of the patchset creates an from_service_v6.yaml
in order to properly handle service VIPs on IPv6 networks.

Note that since OVS is not currently compatible with IPv6 tunnel
endpoints, this patch does not yet enable IPv6 for the Tenant
network by default.

Change-Id: If881b000c6000ec13b54c0ee39f1c8940f079ae3
Co-Authored-By: Giulio Fidente <gfidente@redhat.com>
8 years agoMerge "Update enable-tls.yaml with new endpoints"
Jenkins [Wed, 9 Mar 2016 10:55:31 +0000 (10:55 +0000)]
Merge "Update enable-tls.yaml with new endpoints"

8 years agoAdd Rabbit IPv6 only support
Martin Mágr [Mon, 18 Jan 2016 13:57:43 +0000 (14:57 +0100)]
Add Rabbit IPv6 only support

Adds Rabbit environment variable required for IPv6 only support

Change-Id: Iec209ca83a5b0708ac828c4afaf9d2222e597f24

8 years agoMerge "Store events in Ceilometer"
Jenkins [Tue, 8 Mar 2016 21:46:34 +0000 (21:46 +0000)]
Merge "Store events in Ceilometer"

8 years agoMerge "Set host in nova.conf for compute nodes"
Jenkins [Tue, 8 Mar 2016 18:14:48 +0000 (18:14 +0000)]
Merge "Set host in nova.conf for compute nodes"

8 years agoChange the CinderISCSIHelper to lioadm
Giulio Fidente [Tue, 8 Mar 2016 16:41:13 +0000 (17:41 +0100)]
Change the CinderISCSIHelper to lioadm

Previously we used to always set CinderISCSIHelper to lioadm from
the client. With [1] we aim at cleaning up the client from any
default so this change move the actual default into the templates.

1. Iabc94ad1cce6f1744429aca9f866a59a698f5680

Change-Id: I662e4b0e3cf909ec2583d087ca1d246715caf0f7
Related-Bug: 1554564

8 years agoUpdate enable-tls.yaml with new endpoints
Ben Nemec [Wed, 2 Mar 2016 21:46:54 +0000 (15:46 -0600)]
Update enable-tls.yaml with new endpoints

A couple of new endpoints have been added, and if they're not in
the configured value for EndpointMap it will cause problems.

Sahara is not added as ssl-enabled because I don't believe it has
been added to the loadbalancer yet.

Note that there is work underway to CI overcloud SSL, which should
catch problems like this in the future.

Change-Id: Ia8a106fd94da7be8675ea84f5fbb9ac959771d10

8 years agoAdd a ceph-storage node upgrade script for the upgrade workflow
marios [Tue, 8 Mar 2016 12:30:59 +0000 (14:30 +0200)]
Add a ceph-storage node upgrade script for the upgrade workflow

This adds delivery of an upgrade script to any ceph-storage nodes
during the script delivery that comes first during the upgrade
workflow.

The controllers have the ceph-mon whilst the ceph-osds are on the
ceph-storage nodes. The ceph-mons will be updated first as part of
the heat-driven controller upgrade, and ceph-osds on ceph nodes are
upgraded with the upgrade-non-controller.sh tripleo-common script
as with compute and swift nodes.

Also slight rename for the ObjectStorageConfig/Deployment here for
consistency.

Change-Id: I12abad5548dcb019ade9273da06fe66fd97f54cc

8 years agoMerge "Permits configuration of Cinder enabled_backend via hieradata"
Jenkins [Tue, 8 Mar 2016 15:34:49 +0000 (15:34 +0000)]
Merge "Permits configuration of Cinder enabled_backend via hieradata"

8 years agoIncrease default netdev_max_backlog to 10x
Giulio Fidente [Mon, 8 Feb 2016 22:54:54 +0000 (23:54 +0100)]
Increase default netdev_max_backlog to 10x

It has been observed that on large clouds the netdev backlog
buffer might overflow. This change increases the default by ten
times.

The /proc/net/softnet_stat file contains a counter in the 2nd
column that is incremented when the netdev backlog queue overflows.
If this value is incrementing over time, then netdev_max_backlog
needs to be increased [1].

[1]. https://bugzilla.redhat.com/show_bug.cgi?id=1283676

Change-Id: Iec12324fd3a24e8b608b1e1849c270cc24cb0e60

8 years agoFix typos
Swapnil Kulkarni (coolsvap) [Fri, 8 Jan 2016 07:55:43 +0000 (13:25 +0530)]
Fix typos

Multiple files in t-h-t were having small typos.
Fixed in this patchset.
.
Change-Id: I82d7071747f47544990ed46e2be22931190406b3

8 years agoMerge "Fixup the memcached servers string in nova.conf for v6"
Jenkins [Tue, 8 Mar 2016 09:11:04 +0000 (09:11 +0000)]
Merge "Fixup the memcached servers string in nova.conf for v6"

8 years agoStore events in Ceilometer
Richard Su [Thu, 3 Mar 2016 02:14:44 +0000 (18:14 -0800)]
Store events in Ceilometer

Adds an option to toggle whether events are stored in Ceilometer.

The default is false and remains unchanged.

Change-Id: I9accb679b97cf7172c67f3cd5f218bdaee507c94
Related-Bug: rhbz#1312373

8 years agoMerge "Add an environment to use a swap partition"
Jenkins [Tue, 8 Mar 2016 05:12:07 +0000 (05:12 +0000)]
Merge "Add an environment to use a swap partition"

8 years agoMerge "Move ordering constraints from httpd to openstack-core"
Jenkins [Mon, 7 Mar 2016 20:42:38 +0000 (20:42 +0000)]
Merge "Move ordering constraints from httpd to openstack-core"

8 years agoSet host in nova.conf for compute nodes
James Slagle [Sat, 5 Mar 2016 13:33:54 +0000 (08:33 -0500)]
Set host in nova.conf for compute nodes

In order for instance HA to function safely, nova-compute needs access
to the name by which nova knows the current compute node.

Since the names of the nova-compute and neutron ml2 agents must be the
same for vif binding to work, it also sets the host value in
neutron.conf.

Change-Id: I7d07c57b7276815c72d08acaa86f673e43eb0498

8 years agoMerge "Make AllNodesExtraConfig depend on the validation deployments"
Jenkins [Mon, 7 Mar 2016 19:27:06 +0000 (19:27 +0000)]
Merge "Make AllNodesExtraConfig depend on the validation deployments"

8 years agoMerge "Set /64 cidr_netmask for pcmk VIPs when IPv6"
Jenkins [Mon, 7 Mar 2016 17:19:34 +0000 (17:19 +0000)]
Merge "Set /64 cidr_netmask for pcmk VIPs when IPv6"

8 years agoMerge "Fix rabbit_hosts list for glance-api for IPv6"
Jenkins [Mon, 7 Mar 2016 16:24:00 +0000 (16:24 +0000)]
Merge "Fix rabbit_hosts list for glance-api for IPv6"

8 years agoMerge "Allow to enable IPv6 on Corosync"
Jenkins [Mon, 7 Mar 2016 16:02:46 +0000 (16:02 +0000)]
Merge "Allow to enable IPv6 on Corosync"

8 years agoMerge "Use MysqlVirtualIPUri for nova_api and sahara database"
Jenkins [Mon, 7 Mar 2016 15:51:05 +0000 (15:51 +0000)]
Merge "Use MysqlVirtualIPUri for nova_api and sahara database"

8 years agoMerge "Make the Neutron subnet ipv6_{ra,address}_mode configurable"
Jenkins [Mon, 7 Mar 2016 14:52:56 +0000 (14:52 +0000)]
Merge "Make the Neutron subnet ipv6_{ra,address}_mode configurable"

8 years agoMerge "Revert "Deploy Aodh services, replacing Ceilometer Alarm""
Jenkins [Mon, 7 Mar 2016 14:31:00 +0000 (14:31 +0000)]
Merge "Revert "Deploy Aodh services, replacing Ceilometer Alarm""

8 years agoMerge "Function library for major upgrades"
Jenkins [Mon, 7 Mar 2016 13:38:37 +0000 (13:38 +0000)]
Merge "Function library for major upgrades"

8 years agoMerge "Add IPv6 versions of the Controller NIC configs"
Jenkins [Mon, 7 Mar 2016 12:56:17 +0000 (12:56 +0000)]
Merge "Add IPv6 versions of the Controller NIC configs"

8 years agoMerge "Fixup swift device string to delimit the ipv6 address with []"
Jenkins [Mon, 7 Mar 2016 09:20:52 +0000 (09:20 +0000)]
Merge "Fixup swift device string to delimit the ipv6 address with []"

8 years agoMerge "Introduce a UpgradeScriptDeliveryWorfklow as part of tripleo upgrades"
Jenkins [Mon, 7 Mar 2016 07:55:56 +0000 (07:55 +0000)]
Merge "Introduce a UpgradeScriptDeliveryWorfklow as part of tripleo upgrades"

8 years agoFixup the memcached servers string in nova.conf for v6
marios [Wed, 20 Jan 2016 10:34:07 +0000 (12:34 +0200)]
Fixup the memcached servers string in nova.conf for v6

As discussed at https://bugzilla.redhat.com/show_bug.cgi?id=1299265
when providing a list of IPv6 addresses as the memcache_node_ips
the resulting nova.conf entry can't be parsed properly.

This adds a memcache_node_ips_v6 which has the required format like
inet6:[ADDR1],inet6:[ADDR2],inet6:[ADDR3]

Closes-Bug: 1536103
Change-Id: I7f95fa063cbba279c4c2e270841f0a279d2be2f6

8 years agoFixup swift device string to delimit the ipv6 address with []
marios [Thu, 25 Feb 2016 14:48:43 +0000 (15:48 +0100)]
Fixup swift device string to delimit the ipv6 address with []

The swift device string is formatted in the outputs of the
controller template and swift-storage templates.
For ipv6 we need to delimit the address with [] as discussed in
https://bugzilla.redhat.com/show_bug.cgi?id=1296701#c0

Change-Id: Ie611d62c3668a65a7be52777a613d265682c6a8b
Co-Authored-By: Jiri Stransky <jistr@redhat.com>
Closes-Bug: 1534135

8 years agoAdd an environment to use a swap partition
James Slagle [Sun, 6 Mar 2016 21:02:24 +0000 (16:02 -0500)]
Add an environment to use a swap partition

This environment can be used with AllNodesExtraConfig to enable swap on
a device with the given label as specified by the swap_partition_label
parameter.

If Ironic is used to create the swap partition, the partition will have
a label of swap1, so that's a reasonable default for the parameter.

The partition is also written to /etc/fstab as a swap mount so that it
will be enabled on reboot.

Change-Id: I5cd68c13dbfe53eecf6c6ad93151eadc980a902d

8 years agoRevert "Deploy Aodh services, replacing Ceilometer Alarm"
James Slagle [Fri, 4 Mar 2016 20:03:45 +0000 (15:03 -0500)]
Revert "Deploy Aodh services, replacing Ceilometer Alarm"

This just a revert to see if reverting this gets back to a normal CI run time.

This reverts commit f72aed85594f223b6f888e6d0af3c880ea581a66.

Change-Id: I04a0893f6cf69f547a4db26261005e580e1fc90b

8 years agoSet /64 cidr_netmask for pcmk VIPs when IPv6
Emilien Macchi [Thu, 14 Jan 2016 15:25:16 +0000 (10:25 -0500)]
Set /64 cidr_netmask for pcmk VIPs when IPv6

We'll use /32 for IPv4, the default pacemaker was already using.

Change-Id: Iab584c3e50efc3ecc0ec87bb080bf2d5d802199d
Co-Authored-By: Giulio Fidente <gfidente@redhat.com>
8 years agoAllow to enable IPv6 on Corosync
Emilien Macchi [Wed, 13 Jan 2016 18:04:22 +0000 (13:04 -0500)]
Allow to enable IPv6 on Corosync

To enable IPv6 in Corosync, you'll need to set the --ipv6 parameter when
building the cluster.

To do so, we need to specify this parameter in puppet configuration when
running ::pacemaker::corosync class.

So we have now a new parameter: CorosyncIPv6 which is a boolean, False
by default. If set to True, it will pass right options to enable IPv6
when building the Pacemaker cluster.

Change-Id: I485f1399964ddd7a201ed19ec6580b8a136b3acd

8 years agoMake the Neutron subnet ipv6_{ra,address}_mode configurable
Giulio Fidente [Fri, 22 Jan 2016 09:47:34 +0000 (10:47 +0100)]
Make the Neutron subnet ipv6_{ra,address}_mode configurable

Use of slaac does not permit stati assignment of IPs to a Neutron
port, so we default to dhcpv6-stateful instead.

Change-Id: Id7f104be60ae05785a3d0a33516d7875a4698ed1

8 years agoAdd IPv6 versions of the Controller NIC configs
Dan Sneddon [Tue, 19 Jan 2016 21:36:29 +0000 (13:36 -0800)]
Add IPv6 versions of the Controller NIC configs

This change adds Controller NIC configs for the sample NIC config
templates that are compatible with IPv6 on the External network.
These controller-v6.yaml templates include a default route for IPv6
on the External network, and a default route for IPv4 on the Control
Plane. The Heat parameters ExternalNetworkDefaultRoute and
ControlPlaneDefaultRoute are used to set these values.

Change-Id: Ifed8cb359eae1d9d623d3eb2fe40ea8a0d1d889a

8 years agoMerge "Add IPv6 Support to Isolated Networks"
Jenkins [Sat, 5 Mar 2016 02:20:16 +0000 (02:20 +0000)]
Merge "Add IPv6 Support to Isolated Networks"

8 years agoFix rabbit_hosts list for glance-api for IPv6
Giulio Fidente [Sat, 5 Mar 2016 01:35:47 +0000 (02:35 +0100)]
Fix rabbit_hosts list for glance-api for IPv6

Previously we were always appending the :port suffix to the list
of rabbitmq nodes but the syntax was invalid for IPv6.

This change wires rabbit_hosts from the templates as it happens
already for the other services. Port can be customized using
rabbit_port.

Change-Id: Iecc7a97d46d7de17e85398c57996c104c9125b0e

8 years agoUse MysqlVirtualIPUri for nova_api and sahara database
Giulio Fidente [Sat, 5 Mar 2016 00:09:38 +0000 (01:09 +0100)]
Use MysqlVirtualIPUri for nova_api and sahara database

Without this the nova_api and sahara database_connection string won't
add brackets around the IP address, when IPv6, causing db sync to fail.

Change-Id: I262e5de993ae59ad665edb043119aac2e09c6fdc

8 years agoMake AllNodesExtraConfig depend on the validation deployments
James Slagle [Fri, 4 Mar 2016 21:20:05 +0000 (16:20 -0500)]
Make AllNodesExtraConfig depend on the validation deployments

AllNodesExtraConfig should really only run after the validation
deployments are done, which validate that basic networking is
functioning.

In particular, creating a swap file during AllNodesExtraConfig while the
validation deployments are still running might cause temporary network
outages which could fail the validations.

Change-Id: Ia2a10318de47854a9b8932d72243ce0a85603556
Partial-Bug: #1553243

8 years agoParameterize the heat-docker-agents image
Ryan Hallisey [Fri, 4 Mar 2016 20:53:15 +0000 (15:53 -0500)]
Parameterize the heat-docker-agents image

Heat docker agents needs to be parameterized so that
we can change the tag from the environment file.

Change-Id: I352fd0fdf982056de23285e366efe55ca3aaff1b
Co-authored-by: Jeff Peeler <jpeeler@redhat.com>
8 years agoMerge "Allow for usage of pre-allocated IPs for the management network"
Jenkins [Fri, 4 Mar 2016 19:29:53 +0000 (19:29 +0000)]
Merge "Allow for usage of pre-allocated IPs for the management network"

8 years agoMerge "Run keystone-manage bootstrap for HA deployment too"
Jenkins [Fri, 4 Mar 2016 17:57:21 +0000 (17:57 +0000)]
Merge "Run keystone-manage bootstrap for HA deployment too"

8 years agoRun keystone-manage bootstrap for HA deployment too
Jiri Stransky [Fri, 4 Mar 2016 13:54:51 +0000 (14:54 +0100)]
Run keystone-manage bootstrap for HA deployment too

This is necessary to keep creating the Default domain.

Change-Id: Ib9911819e89f30270d4f7597639b33f30ad2e3a6
Closes-Bug: #1549867

8 years agoMerge "Set notification driver for nova to send"
Jenkins [Fri, 4 Mar 2016 14:13:05 +0000 (14:13 +0000)]
Merge "Set notification driver for nova to send"

8 years agoAdd IPv6 Support to Isolated Networks
Dan Sneddon [Thu, 15 Oct 2015 15:10:44 +0000 (08:10 -0700)]
Add IPv6 Support to Isolated Networks

This change adds a new set of network templates with IPv6 subnets
that can be used instead of the existing IPv4 networks. Each network
can use either the IPv4 or IPv6 template, and the Neutron subnet will
be created with the specified IP version.

The default addresses used for the IPv6 networks use the fd00::/8
prefix for the internal isolated networks (this range is reserved
for private use similar to 10.0.0.0/8), and 2001:db8:fd00:1000::/64
is used as an example default for the External network
(2001:db8::/32 are the documentation addresses [RFC3849]), but this
would ordinarily be a globally addressable subnet. These
parameters may be overridden in an environment file.

This change will require updates to the OpenStack Puppet
Modules to support IPv6 addresses in some of the hieradata values.
Many of the OPM modules already have IPv6 support to support IPv6
deployments in Packstack, but some OPM packages that apply only to
Instack/TripleO deployments need to be updated.

IPv6 addresses used in URLs need to be surrounded by brackets in
order to differentiate IP address from port number. This change
adds a new output to the network/ports resources for
ip_address_uri, which is an IP address with brackets in the case
of IPv6, and a raw IP address without brackets for IPv4 ports.
This change also updates some URLs which are constructed in Heat.

This has been tested and problems were found with Puppet not
accepting IPv6 addresses. This is addressed in the latest Puppet.
Additional changes were required to make this work with Ceph.

IPv6 tunnel endpoints with Open vSwitch are not yet supported
(although support is coming soon), so this review leaves the
Tenant network as an isolated IPv4 network for the time being.

Change-Id: Ie7a742bdf1db533edda2998a53d28528f80ef8e2

8 years agoAllow for usage of pre-allocated IPs for the management network
Steven Hardy [Thu, 11 Feb 2016 10:57:54 +0000 (10:57 +0000)]
Allow for usage of pre-allocated IPs for the management network

Id3d4f12235501ae77200430a2dc022f378dce336 added support for pre-allocated
IPs on the other overlay networks, but because the patch adding the
managment network (I0813a13f60a4f797be04b34258a2cffa9ea7e84f) was
under review around the same time, we missed adding the from_pool
capability to the ManagementNetwork.

Change-Id: If99f37634d5da7e7fb7cfc31232e926bd5ff074a

8 years agoMerge "Deploy Aodh services, replacing Ceilometer Alarm"
Jenkins [Thu, 3 Mar 2016 20:40:03 +0000 (20:40 +0000)]
Merge "Deploy Aodh services, replacing Ceilometer Alarm"

8 years agoUpdated the heat_template_version
rajinir [Thu, 3 Mar 2016 20:27:57 +0000 (14:27 -0600)]
Updated the heat_template_version

Fixed the heat_template_version of these YAML files to the liberty
release version according to HOT template specs.

Change-Id: Ic5e0d843f7e164c59fb1737e52ef4cf6ad4df77f

8 years agoDeploy Aodh services, replacing Ceilometer Alarm
Emilien Macchi [Tue, 3 Nov 2015 23:09:34 +0000 (18:09 -0500)]
Deploy Aodh services, replacing Ceilometer Alarm

Ceilometer Alarm is deprecated in Liberty by Aodh.

This patch:
* manage Aodh Keystone resources
* deploy Aodh API under WSGI, Notifier, Listener and Evaluator
* manage new parameters to customize Aodh deployment
* uses ceilometer DB for the upgrade path
* pacemaker config

Depends-On: I9e34485285829884d9c954b804e3bdd5d6e31635
Depends-On: I891985da9248a88c6ce2df1dd186881f582605ee
Depends-On: Ied8ba5985f43a5c5b3be5b35a091aef6ed86572f

Co-Authored-By: Pradeep Kilambi <pkilambi@redhat.com>
Change-Id: I58d419173e80d2462accf7324c987c71420fd5f6

8 years agoMerge "endpoint_map: bump nova api from 2.0 to 2.1"
Jenkins [Thu, 3 Mar 2016 15:33:04 +0000 (15:33 +0000)]
Merge "endpoint_map: bump nova api from 2.0 to 2.1"

8 years agoMerge "Use set -e for validation-scripts/all-nodes.sh"
Jenkins [Thu, 3 Mar 2016 15:12:13 +0000 (15:12 +0000)]
Merge "Use set -e for validation-scripts/all-nodes.sh"

8 years agoFunction library for major upgrades
Jiri Stransky [Fri, 26 Feb 2016 13:53:29 +0000 (14:53 +0100)]
Function library for major upgrades

This commit introduces a bash file to be sourced into major upgrade
scripts. Into this file we can put specific pieces of migration logic in
the form of bash functions, which can then be called from the upgrade
scripts.

Change-Id: Ibf7aa84d3880e9218c488dec9d707300e1784744

8 years agoMerge "Moves the swift start/stop into the common_functions.sh file"
Jenkins [Thu, 3 Mar 2016 12:48:53 +0000 (12:48 +0000)]
Merge "Moves the swift start/stop into the common_functions.sh file"

8 years agoMerge "Add Satellite 5 support"
Jenkins [Thu, 3 Mar 2016 12:00:31 +0000 (12:00 +0000)]
Merge "Add Satellite 5 support"

8 years agoIntroduce a UpgradeScriptDeliveryWorfklow as part of tripleo upgrades
marios [Wed, 2 Mar 2016 16:09:59 +0000 (18:09 +0200)]
Introduce a UpgradeScriptDeliveryWorfklow as part of tripleo upgrades

This splits the upgrade script delivery out of the UpgradeWorkflow
and into a new task which delivers the upgrade script for
compute and object-storage nodes. This is intended to be the first
part of the upgrades process, since we need to upgrade swift nodes
before the controllers and then only one at a time. So this will
deliver the upgrade script which can be invoked by the operator
using the existing script in tripleo-common
'upgrade-non-controller.sh'.

This can be invoked by passing the -e
environments/major-upgrade-script-delivery.yaml (added here) to
the openstack overcloud deploy command.

Change-Id: I20a0d4978e907111404f8108c502ab53b69a3296

8 years agoUpgrade of Cinder block storage nodes
Jiri Stransky [Thu, 3 Mar 2016 10:36:02 +0000 (11:36 +0100)]
Upgrade of Cinder block storage nodes

This introduces upgrades for Cinder block storage nodes. Currently
Cinder doesn't support upgrade level pinning and cannot safely deal with
version skew. This means that we have to upgrade Cinder storage nodes in
sync with controller nodes (after they were taken down for upgrade,
before they are brought back up) to ensure that Cinder services perform
AMQP communication only within the same major version of Cinder.

According to our current knowledge, Cinder block storage nodes are the
only node type that will have to be upgraded in sync with controllers.

Change-Id: Icec913c015eff744b0f31b513176b4b657df43af

8 years agoMerge "Cisco nexus config template - obsolete parameter (replay count)."
Jenkins [Thu, 3 Mar 2016 09:51:24 +0000 (09:51 +0000)]
Merge "Cisco nexus config template - obsolete parameter (replay count)."

8 years agoMoves the swift start/stop into the common_functions.sh file
marios [Wed, 2 Mar 2016 16:31:51 +0000 (18:31 +0200)]
Moves the swift start/stop into the common_functions.sh file

Since swift isn't managed by pacemaker we need to manually (systemctl)
stop and start the swift services. This moves the duplicate blocks for
start/stop into a common function (we already include that
pacemaker_common_functions.sh here so may as well)

Change-Id: Ic4f23212594c1bf9edc39143bf60c7f6d648fd1d

8 years agoMerge "Upgrades: install zaqarclient"
Jenkins [Wed, 2 Mar 2016 15:39:24 +0000 (15:39 +0000)]
Merge "Upgrades: install zaqarclient"