aboutsummaryrefslogtreecommitdiffstats
path: root/manifests/profile
diff options
context:
space:
mode:
Diffstat (limited to 'manifests/profile')
-rw-r--r--manifests/profile/base/certmonger_user.pp9
-rw-r--r--manifests/profile/pacemaker/ovn_dbs_bundle.pp159
2 files changed, 167 insertions, 1 deletions
diff --git a/manifests/profile/base/certmonger_user.pp b/manifests/profile/base/certmonger_user.pp
index c3dde96..cc29cd5 100644
--- a/manifests/profile/base/certmonger_user.pp
+++ b/manifests/profile/base/certmonger_user.pp
@@ -58,6 +58,11 @@
# it will create.
# Defaults to hiera('libvirt_certificates_specs', {}).
#
+# [*libvirt_postsave_cmd*]
+# (Optional) If set, it overrides the default way to restart libvirt when the
+# certificate is renewed.
+# Defaults to undef
+#
# [*mongodb_certificate_specs*]
# (Optional) The specifications to give to certmonger for the certificate(s)
# it will create.
@@ -84,6 +89,7 @@ class tripleo::profile::base::certmonger_user (
$haproxy_certificates_specs = hiera('tripleo::profile::base::haproxy::certificates_specs', {}),
$haproxy_postsave_cmd = undef,
$libvirt_certificates_specs = hiera('libvirt_certificates_specs', {}),
+ $libvirt_postsave_cmd = undef,
$mongodb_certificate_specs = hiera('mongodb_certificate_specs',{}),
$mysql_certificate_specs = hiera('tripleo::profile::base::database::mysql::certificate_specs', {}),
$rabbitmq_certificate_specs = hiera('tripleo::profile::base::rabbitmq::certificate_specs', {}),
@@ -111,7 +117,8 @@ class tripleo::profile::base::certmonger_user (
}
unless empty($libvirt_certificates_specs) {
include ::tripleo::certmonger::libvirt_dirs
- ensure_resources('tripleo::certmonger::libvirt', $libvirt_certificates_specs)
+ ensure_resources('tripleo::certmonger::libvirt', $libvirt_certificates_specs,
+ {'postsave_cmd' => $libvirt_postsave_cmd})
}
unless empty($haproxy_certificates_specs) {
include ::tripleo::certmonger::haproxy_dirs
diff --git a/manifests/profile/pacemaker/ovn_dbs_bundle.pp b/manifests/profile/pacemaker/ovn_dbs_bundle.pp
new file mode 100644
index 0000000..8c287b1
--- /dev/null
+++ b/manifests/profile/pacemaker/ovn_dbs_bundle.pp
@@ -0,0 +1,159 @@
+# Copyright 2017 Red Hat, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you may
+# not use this file except in compliance with the License. You may obtain
+# a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+# License for the specific language governing permissions and limitations
+# under the License.
+#
+# == Class: tripleo::profile::pacemaker::neutron::plugins::ml2::ovn
+#
+# Neutron ML2 driver Pacemaker HA profile for tripleo
+#
+# === Parameters
+#
+# [*ovn_dbs_docker_image*]
+# (Optional) The docker image to use for creating the pacemaker bundle
+# Defaults to hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::ovn_dbs_docker_image', undef)
+#
+# [*ovn_dbs_control_port*]
+# (Optional) The bundle's pacemaker_remote control port on the host
+# Defaults to hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::control_port', '3125')
+#
+# [*bootstrap_node*]
+# (Optional) The hostname of the node responsible for bootstrapping tasks
+# Defaults to hiera('ovn_dbs_short_bootstrap_node_name')
+#
+# [*step*]
+# (Optional) The current step in deployment. See tripleo-heat-templates
+# for more details.
+# Defaults to hiera('step')
+#
+# [*pcs_tries*]
+# (Optional) The number of times pcs commands should be retried.
+# Defaults to hiera('pcs_tries', 20)
+#
+# [*ovn_dbs_vip*]
+# (Optional) The vip to be used for OVN DB servers. It is expected that
+# the vip resource to be created before calling this class.
+# Defaults to hiera('ovn_dbs_vip')
+#
+# [*nb_db_port*]
+# The TCP port in which the OVN Northbound DB listens to.
+# Defaults to 6641
+#
+# [*sb_db_port*]
+# The TCP port in which the OVN Southbound DB listens to.
+# Defaults to 6642
+#
+
+class tripleo::profile::pacemaker::ovn_dbs_bundle (
+ $ovn_dbs_docker_image = hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::ovn_dbs_docker_image', undef),
+ $ovn_dbs_control_port = hiera('tripleo::profile::pacemaker::ovn_dbs_bundle::control_port', '3125'),
+ $bootstrap_node = hiera('ovn_dbs_short_bootstrap_node_name'),
+ $step = Integer(hiera('step')),
+ $pcs_tries = hiera('pcs_tries', 20),
+ $ovn_dbs_vip = hiera('ovn_dbs_vip'),
+ $nb_db_port = 6641,
+ $sb_db_port = 6642
+) {
+
+ if $::hostname == downcase($bootstrap_node) {
+ $pacemaker_master = true
+ } else {
+ $pacemaker_master = false
+ }
+
+ if $step >= 3 {
+ if $pacemaker_master {
+ $ovndb_servers_resource_name = 'ovndb_servers'
+ $ovndb_servers_ocf_name = 'ovn:ovndb-servers'
+ $ovndb_vip_resource_name = "ip-${ovn_dbs_vip}"
+
+ $ovn_dbs_short_node_names = hiera('ovn_dbs_short_node_names')
+ $ovn_dbs_nodes_count = count($ovn_dbs_short_node_names)
+ $ovn_dbs_short_node_names.each |String $node_name| {
+ pacemaker::property { "ovn-dbs-role-${node_name}":
+ property => 'ovn-dbs-role',
+ value => true,
+ tries => $pcs_tries,
+ node => $node_name,
+ before => Pacemaker::Resource::Bundle['ovn-dbs-bundle'],
+ }
+ }
+
+ $ovn_dbs_location_rule = {
+ resource_discovery => 'exclusive',
+ score => 0,
+ expression => ['ovn-dbs-role eq true'],
+ }
+
+ pacemaker::resource::bundle { 'ovn-dbs-bundle':
+ image => $ovn_dbs_docker_image,
+ replicas => $ovn_dbs_nodes_count,
+ masters => 1,
+ location_rule => $ovn_dbs_location_rule,
+ container_options => 'network=host',
+ options => '--user=root --log-driver=journald -e KOLLA_CONFIG_STRATEGY=COPY_ALWAYS',
+ run_command => '/bin/bash /usr/local/bin/kolla_start',
+ network => "control-port=${ovn_dbs_control_port}",
+ storage_maps => {
+ 'ovn-dbs-cfg-files' => {
+ 'source-dir' => '/var/lib/kolla/config_files/ovn_dbs.json',
+ 'target-dir' => '/var/lib/kolla/config_files/config.json',
+ 'options' => 'ro',
+ },
+ 'ovn-dbs-mod-files' => {
+ 'source-dir' => '/lib/modules',
+ 'target-dir' => '/lib/modules',
+ 'options' => 'ro',
+ },
+ 'ovn-dbs-run-files' => {
+ 'source-dir' => '/var/lib/openvswitch/ovn',
+ 'target-dir' => '/run/openvswitch',
+ 'options' => 'rw',
+ },
+ 'ovn-dbs-log-files' => {
+ 'source-dir' => '/var/log/containers/openvswitch',
+ 'target-dir' => '/var/log/openvswitch',
+ 'options' => 'rw',
+ },
+ 'ovn-dbs-db-path' => {
+ 'source-dir' => '/var/lib/openvswitch/ovn',
+ 'target-dir' => '/etc/openvswitch',
+ 'options' => 'rw',
+ },
+ },
+ }
+
+ pacemaker::resource::ocf { "${ovndb_servers_resource_name}":
+ ocf_agent_name => "${ovndb_servers_ocf_name}",
+ master_params => '',
+ op_params => 'start timeout=200s stop timeout=200s',
+ resource_params => "master_ip=${ovn_dbs_vip} nb_master_port=${nb_db_port} sb_master_port=${sb_db_port} manage_northd=yes",
+ tries => $pcs_tries,
+ location_rule => $ovn_dbs_location_rule,
+ meta_params => 'notify=true',
+ bundle => 'ovn-dbs-bundle',
+ }
+
+ pacemaker::constraint::colocation { "${ovndb_vip_resource_name}-with-${ovndb_servers_resource_name}":
+ source => "${ovndb_vip_resource_name}",
+ target => 'ovn-dbs-bundle',
+ master_slave => true,
+ score => 'INFINITY',
+ tries => $pcs_tries,
+ }
+
+ Pacemaker::Resource::Bundle['ovn-dbs-bundle']
+ -> Pacemaker::Resource::Ocf["${ovndb_servers_resource_name}"]
+ -> Pacemaker::Constraint::Colocation["${ovndb_vip_resource_name}-with-${ovndb_servers_resource_name}"]
+ }
+ }
+}