aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--manifests/certmonger/ca/crl.pp2
-rw-r--r--manifests/profile/pacemaker/ovn_dbs_bundle.pp159
-rw-r--r--spec/classes/tripleo_certmonger_ca_crl_spec.rb4
3 files changed, 162 insertions, 3 deletions
diff --git a/manifests/certmonger/ca/crl.pp b/manifests/certmonger/ca/crl.pp
index 2454460..a69065d 100644
--- a/manifests/certmonger/ca/crl.pp
+++ b/manifests/certmonger/ca/crl.pp
@@ -129,7 +129,7 @@ class tripleo::certmonger::ca::crl (
if $ensure == 'present' {
# Fetch CRL in cron job and notify needed services
- $cmd_list = concat(["${sleep}curl -L -o ${fetched_crl} ${crl_source}"], $process_cmd, $reload_cmds)
+ $cmd_list = concat(["${sleep}curl -s -L -o ${fetched_crl} ${crl_source}"], $process_cmd, $reload_cmds)
$cron_cmd = join($cmd_list, ' && ')
} else {
$cron_cmd = absent
diff --git a/manifests/profile/pacemaker/ovn_dbs_bundle.pp b/manifests/profile/pacemaker/ovn_dbs_bundle.pp
new file mode 100644
index 0000000..8c287b1
--- /dev/null
+++ b/manifests/profile/pacemaker/ovn_dbs_bundle.pp
@@ -0,0 +1,159 @@
+# Copyright 2017 Red Hat, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you may
+# not use this file except in compliance with the License. You may obtain
+# a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+# License for the specific language governing permissions and limitations
+# under the License.
+#
+# == Class: tripleo::profile::pacemaker::neutron::plugins::ml2::ovn
+#
+# Neutron ML2 driver Pacemaker HA profile for tripleo
+#
+# === Parameters
+#
+# [*ovn_dbs_docker_image*]
+# (Optional) The docker image to use for creating the pacemaker bundle
+# Defaults to hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::ovn_dbs_docker_image', undef)
+#
+# [*ovn_dbs_control_port*]
+# (Optional) The bundle's pacemaker_remote control port on the host
+# Defaults to hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::control_port', '3125')
+#
+# [*bootstrap_node*]
+# (Optional) The hostname of the node responsible for bootstrapping tasks
+# Defaults to hiera('ovn_dbs_short_bootstrap_node_name')
+#
+# [*step*]
+# (Optional) The current step in deployment. See tripleo-heat-templates
+# for more details.
+# Defaults to hiera('step')
+#
+# [*pcs_tries*]
+# (Optional) The number of times pcs commands should be retried.
+# Defaults to hiera('pcs_tries', 20)
+#
+# [*ovn_dbs_vip*]
+# (Optional) The vip to be used for OVN DB servers. It is expected that
+# the vip resource to be created before calling this class.
+# Defaults to hiera('ovn_dbs_vip')
+#
+# [*nb_db_port*]
+# The TCP port in which the OVN Northbound DB listens to.
+# Defaults to 6641
+#
+# [*sb_db_port*]
+# The TCP port in which the OVN Southbound DB listens to.
+# Defaults to 6642
+#
+
+class tripleo::profile::pacemaker::ovn_dbs_bundle (
+ $ovn_dbs_docker_image = hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::ovn_dbs_docker_image', undef),
+ $ovn_dbs_control_port = hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::control_port', '3125'),
+ $bootstrap_node = hiera('ovn_dbs_short_bootstrap_node_name'),
+ $step = Integer(hiera('step')),
+ $pcs_tries = hiera('pcs_tries', 20),
+ $ovn_dbs_vip = hiera('ovn_dbs_vip'),
+ $nb_db_port = 6641,
+ $sb_db_port = 6642
+) {
+
+ if $::hostname == downcase($bootstrap_node) {
+ $pacemaker_master = true
+ } else {
+ $pacemaker_master = false
+ }
+
+ if $step >= 3 {
+ if $pacemaker_master {
+ $ovndb_servers_resource_name = 'ovndb_servers'
+ $ovndb_servers_ocf_name = 'ovn:ovndb-servers'
+ $ovndb_vip_resource_name = "ip-${ovn_dbs_vip}"
+
+ $ovn_dbs_short_node_names = hiera('ovn_dbs_short_node_names')
+ $ovn_dbs_nodes_count = count($ovn_dbs_short_node_names)
+ $ovn_dbs_short_node_names.each |String $node_name| {
+ pacemaker::property { "ovn-dbs-role-${node_name}":
+ property => 'ovn-dbs-role',
+ value => true,
+ tries => $pcs_tries,
+ node => $node_name,
+ before => Pacemaker::Resource::Bundle['ovn-dbs-bundle'],
+ }
+ }
+
+ $ovn_dbs_location_rule = {
+ resource_discovery => 'exclusive',
+ score => 0,
+ expression => ['ovn-dbs-role eq true'],
+ }
+
+ pacemaker::resource::bundle { 'ovn-dbs-bundle':
+ image => $ovn_dbs_docker_image,
+ replicas => $ovn_dbs_nodes_count,
+ masters => 1,
+ location_rule => $ovn_dbs_location_rule,
+ container_options => 'network=host',
+ options => '--user=root --log-driver=journald -e KOLLA_CONFIG_STRATEGY=COPY_ALWAYS',
+ run_command => '/bin/bash /usr/local/bin/kolla_start',
+ network => "control-port=${ovn_dbs_control_port}",
+ storage_maps => {
+ 'ovn-dbs-cfg-files' => {
+ 'source-dir' => '/var/lib/kolla/config_files/ovn_dbs.json',
+ 'target-dir' => '/var/lib/kolla/config_files/config.json',
+ 'options' => 'ro',
+ },
+ 'ovn-dbs-mod-files' => {
+ 'source-dir' => '/lib/modules',
+ 'target-dir' => '/lib/modules',
+ 'options' => 'ro',
+ },
+ 'ovn-dbs-run-files' => {
+ 'source-dir' => '/var/lib/openvswitch/ovn',
+ 'target-dir' => '/run/openvswitch',
+ 'options' => 'rw',
+ },
+ 'ovn-dbs-log-files' => {
+ 'source-dir' => '/var/log/containers/openvswitch',
+ 'target-dir' => '/var/log/openvswitch',
+ 'options' => 'rw',
+ },
+ 'ovn-dbs-db-path' => {
+ 'source-dir' => '/var/lib/openvswitch/ovn',
+ 'target-dir' => '/etc/openvswitch',
+ 'options' => 'rw',
+ },
+ },
+ }
+
+ pacemaker::resource::ocf { "${ovndb_servers_resource_name}":
+ ocf_agent_name => "${ovndb_servers_ocf_name}",
+ master_params => '',
+ op_params => 'start timeout=200s stop timeout=200s',
+ resource_params => "master_ip=${ovn_dbs_vip} nb_master_port=${nb_db_port} sb_master_port=${sb_db_port} manage_northd=yes",
+ tries => $pcs_tries,
+ location_rule => $ovn_dbs_location_rule,
+ meta_params => 'notify=true',
+ bundle => 'ovn-dbs-bundle',
+ }
+
+ pacemaker::constraint::colocation { "${ovndb_vip_resource_name}-with-${ovndb_servers_resource_name}":
+ source => "${ovndb_vip_resource_name}",
+ target => 'ovn-dbs-bundle',
+ master_slave => true,
+ score => 'INFINITY',
+ tries => $pcs_tries,
+ }
+
+ Pacemaker::Resource::Bundle['ovn-dbs-bundle']
+ -> Pacemaker::Resource::Ocf["${ovndb_servers_resource_name}"]
+ -> Pacemaker::Constraint::Colocation["${ovndb_vip_resource_name}-with-${ovndb_servers_resource_name}"]
+ }
+ }
+}
diff --git a/spec/classes/tripleo_certmonger_ca_crl_spec.rb b/spec/classes/tripleo_certmonger_ca_crl_spec.rb
index 1e605ce..29726f1 100644
--- a/spec/classes/tripleo_certmonger_ca_crl_spec.rb
+++ b/spec/classes/tripleo_certmonger_ca_crl_spec.rb
@@ -47,7 +47,7 @@ describe 'tripleo::certmonger::ca::crl' do
end
let :cron_cmd do
- "curl -L -o #{params[:crl_preprocessed]} #{params[:crl_source]} && #{process_cmd}"
+ "curl -s -L -o #{params[:crl_preprocessed]} #{params[:crl_source]} && #{process_cmd}"
end
it 'should create and process CRL file' do
@@ -75,7 +75,7 @@ describe 'tripleo::certmonger::ca::crl' do
end
let :cron_cmd do
- "curl -L -o #{params[:crl_dest]} #{params[:crl_source]}"
+ "curl -s -L -o #{params[:crl_dest]} #{params[:crl_source]}"
end
it 'should create and process CRL file' do