aboutsummaryrefslogtreecommitdiffstats
path: root/puppet
AgeCommit message (Collapse)AuthorFilesLines
2017-02-28Configure SSL connection for MySQL client via client config fileJuan Antonio Osorio Robles1-0/+4
This uses the mysql client configuration file to configure if SSL should be used for the connection if SSL in the internal network is enabled. Change-Id: Ifd1a06e0749a05a65f6314255843f572d2209067
2017-02-27Merge "Add VPP composable service"Jenkins1-0/+47
2017-02-27Merge "Make heat max_json_body_size configurable"Jenkins1-0/+5
2017-02-27Deploy versionless keystone endpoints (for keystone only)Juan Antonio Osorio Robles1-0/+1
The default is to deploy v2.0 endpoints, but this is not the recommended approach. we should instead be using versionless endpoints Change-Id: Icbfae1c2ff2b7312646fd8e817dd8209220a0d96 Related-Bug: #1667679
2017-02-27Merge "Add OpenDaylightConnectionProtocol parameter to opendaylight-api service"Jenkins1-0/+5
2017-02-27Merge "Update the Nova Endpoint information for Cinder"Jenkins1-1/+2
2017-02-26Add VPP composable serviceFeng Pan1-0/+47
Vector Packet Processing (VPP) is a high performance packet processing stack that runs in user space in Linux. VPP is used as an alternative to kernel networking stack for accelerated network data path. This patch adds VPP as a composable service. Note that NIC binding related configs for VPP are handled in os-net-config. Depends-on: I70a68a204a8b9d533fc2fa4fc33c39c3b1c366bf Change-Id: I5e4b1903dc87cb16259eeb05db585678acadbc6b Implements: blueprint fdio-integration-tripleo
2017-02-25Install openstack-panko-api on upgradeMarius Cornea1-0/+6
This doesn't exist in newton images, so install it via the ansible tasks during step3 (when all other packages are updated). Change-Id: I700a711473d10a50fad6b1797453a74c0cdff54b Closes-Bug: 1667965
2017-02-25Switch central and compute templates to use polling agentPradeep Kilambi2-2/+4
Ceilometer central and compute agent classes are deprecated. Instead polling agent should be used with relevant namespaces. Change-Id: Ida247fe29500ff02b76602c785a3f42fa4291227 Depends-On: I1ee50124bf8936e12414f984e1bcd4545d92e953
2017-02-25Merge "Don't assume default network names in net_ip*map"Jenkins1-9/+35
2017-02-24Merge "Upgrade nova-api/scheduler/conductor packages at step3 not step2."Jenkins4-11/+4
2017-02-24Merge "Add checks in ansible upgrade tasks for CephMon and CephOSD"Jenkins3-19/+78
2017-02-24Upgrade nova-api/scheduler/conductor packages at step3 not step2.Sofer Athlan-Guyot4-11/+4
The nova-api, nova-scheduler nova-conductor packages are updated during step2. The package upgrade trigger a restart of the service which fails and is constantly retried by systemd: Feb 24 12:34:24 centos-7-2-node-rax-iad-7463943-440549 systemd[1]: Failed to start OpenStack Nova Scheduler Server. Feb 24 12:34:24 centos-7-2-node-rax-iad-7463943-440549 systemd[1]: Unit openstack-nova-scheduler.service entered failed state. Feb 24 12:34:24 centos-7-2-node-rax-iad-7463943-440549 systemd[1]: openstack-nova-scheduler.service failed. Feb 24 12:34:24 centos-7-2-node-rax-iad-7463943-440549 systemd[1]: openstack-nova-scheduler.service holdoff time over, scheduling restart. We eventually reach timeout. We use https://github.com/openstack/tripleo-heat-templates/blob/master/puppet/services/tripleo-packages.yaml#L44-L46 to upgrade existing packages. Add a note to the README.rst to make people aware of the general upgrade done at step3 and limit its usage to new package for individual service. Change-Id: I13b51bcfe0c98034944613f7e1c3f0168cd4de76 Closes-Bug: #1667728
2017-02-24Make heat max_json_body_size configurableDan Prince1-0/+5
We need to bump this a bit for the overcloud containers jobs. This patch makes it configurable and increases the size for the undercloud. Related-bug: #1667697 Change-Id: I79319f051747b381f5fa36f8a7fc7f31020bc245
2017-02-24Merge "Enable TLS for swift-proxy's ceilometer notifications"Jenkins1-0/+1
2017-02-23Merge "Remove forgotten sahara dbsync from step5 upgrades tasks"Jenkins1-3/+0
2017-02-23Merge "Adding the ip_conntrack_proto_sctp kernel module"Jenkins1-0/+1
2017-02-23Merge "Increase ansible-pacemaker default service start timeout"Jenkins1-1/+1
2017-02-23Enable TLS for swift-proxy's ceilometer notificationsJuan Antonio Osorio Robles1-0/+1
If the message broker is using TLS, we enable it for these notifications. Change-Id: I4f37e77ae12e9582fab7d326ebd4c70127c5445f Depends-On: If23d1f0d20264faaddc2e5ad54863483fa43ed41
2017-02-23Increase ansible-pacemaker default service start timeoutmarios1-1/+1
We are passing 200 but in some environments this has been seen to expire by a few seconds. Change-Id: I5c2270559339ea9ee0043b7a2e519e26d4d9d78a Closes-Bug: 1666604
2017-02-23Remove forgotten sahara dbsync from step5 upgrades tasksmarios1-3/+0
I suspect this was forgotten from the initial commits where we were doing the dbsync in ansible Change-Id: Ie337bfba4e61cf3d546d0b79b611b84211ac9d9d
2017-02-23Merge "neutron: don't set external_network_bridge option by default"Jenkins2-10/+28
2017-02-23Adding the ip_conntrack_proto_sctp kernel moduleItzik Brown1-0/+1
When using conntrack there is a need to load the ip_conntrack_proto_sctp module for SCTP to work. Closes-bug: 1664192 Change-Id: Ic58f5327401c3ab2215acd8b9ce699f555e8c5e4
2017-02-22Update the Nova Endpoint information for CinderRhys Oxenham1-1/+2
This patch updates the Cinder service to reference the correct catalogue entries for Nova as configured by TripleO. The default settings as set by TripleO do not match our catalogue entries, and when Cinder attempts to callback to Nova in certain events (such as a Cinder volume retype) it can raise an EndpointNotFound error. Out of the box we have settings in /etc/cinder/cinder.conf like: nova_catalog_info = compute:Compute Service:internalURL With the format as "<service_type>:<service_name>:<endpoint_type>" Yet our catalogue has no mention of 'Compute Service'. This patch also fixes the reference for the adminURL also. Change-Id: I888ee07ef02d82578867e33608901c06e6478472 Co-Authored-By: Greg Charot <gcharot@redhat.com>
2017-02-22Merge "Configure authtoken in nova-placement api service"Jenkins1-0/+4
2017-02-22Merge "Add step0,validation checks for heat services"Jenkins4-4/+4
2017-02-22Merge "Adding upgrade steps to congress service"Jenkins1-0/+8
2017-02-21Improve the README for the _setting keysMichele Baldessari1-2/+15
It is not entirely clear to someone writing their own templates how to distribute hiera keys to different roles. Let's clear this up with a more extensive description. Change-Id: I02224389c2de90bc5534bce764e5e9d3bb23538f
2017-02-21Add checks in ansible upgrade tasks for CephMon and CephOSDGiulio Fidente3-19/+78
Adds two checks, one for the CephMon and one for the CephOSD upgrade tasks borrowed from ceph-ansible. Change-Id: I0a0e60d277240130c6bd76a74ccc13354b87a30a Co-Authored-By: Sebastien Han <seb@redhat.com>
2017-02-21Add step0,validation checks for heat servicesmarios4-4/+4
These are currently commented out because we were waiting for I7612189be49c9c07f64753c1be4b72aa8524d06d to enable these in the ci upgrades job. Change-Id: I07bc0c2af0b227416470e23ad42f3a9aae430271
2017-02-21Merge "Stop nova-api before upgrading package"Jenkins1-3/+3
2017-02-21Merge "Adding upgrade_tasks to tacker"Jenkins1-0/+7
2017-02-20Adding upgrade steps to congress serviceDan Radez1-0/+8
Change-Id: I79169baf4c59e9325355992288de2e9ad8088e3b
2017-02-20Merge "Generate Pre/Post Puppet Tasks for all roles"Jenkins1-11/+7
2017-02-20Stop nova-api before upgrading packageOliver Walsh1-3/+3
If the service is running then the rpm upgrade will attempt to restart. Ensuring the service is stopped before upgrade should resolve this. Change-Id: I4179cb773616721640490d26082eacac45f92dff Closes-Bug: 1665717
2017-02-20Merge "Make the DB URIs host-independent for all services"Jenkins21-38/+52
2017-02-20Adding upgrade_tasks to tackerDan Radez1-0/+7
Change-Id: I0d7e151a931d02068dea80d7cf57b99736e689e6
2017-02-17Make the DB URIs host-independent for all servicesMichele Baldessari21-38/+52
When fixing LP#1643487 we added ?bind_address to all DB URIs. Since this clashes with Cellsv2 due to the URIs becoming host dependent, we need a new approach to pass bind_address to pymysql that leaves the DB URIs host-independent. In change Iff8bd2d9ee85f7bb1445aa2e1b3cfbff1f397b18 we first create a /etc/my.cnf.d/tripleo.cnf file with a [tripleo] section with the correct bind-address option. In this change we make sure that the DB URIs will point to the added file and to the specific section containing the necessary bind-address option. We do introduce a new MySQLClient profile which will hold all this more client-specific configuration so that this change can fit better in the composable roles work. Also, in the future it might contain the necessary configuration for SSL for example. Note that in case the /etc/my.cnf.d/tripleo.cnf file does not exist (because it is created via the mysqlclient profile), things keep on working as usual and the bind-address option simply won't be set, which has no impact on hosts where there are no VIPs. Co-Authored-By: Damien Ciabrini <dciabrin@redhat.com> Change-Id: Ieac33efe38f32e949fd89545eb1cd8e0fe114a12 Related-Bug: #1643487 Closes-Bug: #1663181 Closes-Bug: #1664524 Depends-On: Iff8bd2d9ee85f7bb1445aa2e1b3cfbff1f397b18
2017-02-17Generate Pre/Post Puppet Tasks for all rolesJames Slagle1-11/+7
We need to generate the Pre and Post Puppet Tasks for all roles, not just the Controller role. Otherwise, you have to have a role specifically named Controller that is running your pacemaker services, or pacemaker won't be properly handled on stack-updates. When using deployed-server's it's actually not possible to have a role called Controller, since we need to use all custom roles so that we can set disable_contraints on each role. Further, it is not possible to redefine the Controller role since puppet/controller-role.yaml is listed in the excludes file. Change-Id: I737b24db90932e292b50b122640f66385f2d1c23 Partial-Bug: #1665060
2017-02-17Don't assume default network names in net_ip*mapSteven Hardy1-9/+35
This needs to handle a ServiceNetMap containing non-default network names when they are overridden via the *NetName parameters. Closes-Bug: #1651541 Change-Id: I95d808444642a37612a495e822e50449a7e7da63
2017-02-17Install nova-placement package on upgradeSteven Hardy1-0/+5
This doesn't exist in newton images, so install it via the ansible tasks during step3 (when all other packages are updated). Change-Id: I08fb7855b910ccc5a8ab2d73f1de15b695784abd Closes-Bug: #1664265
2017-02-17Merge "Apply puppet in non-controller script in step."Jenkins1-0/+1
2017-02-17Merge "docker: new hybrid deployment architecture and configuration"Jenkins2-7/+3
2017-02-17Merge "Add Newton to Ocata UpgradeInitCommonCommand"Jenkins6-1/+54
2017-02-17Merge "Automatically backup and restore Swift rings from the undercloud"Jenkins1-0/+18
2017-02-16Add OpenDaylightConnectionProtocol parameter to opendaylight-api serviceFeng Pan1-0/+5
OpenDaylightConnectionProtocol is currently only set in opendaylight-ovs service, it needs to be set in opendaylight-api when Opendaylight is deployed with another vswitch like VPP. Closes-Bug: #1665442 Change-Id: Ib20cacd5b15586f96c880ed5a371e7e3c85a7a8c Signed-off-by: Feng Pan <fpan@redhat.com>
2017-02-16Merge "Configuring a default ntp server."Jenkins1-2/+4
2017-02-16Merge "Remove unused nova_url from neutron config"Jenkins1-2/+0
2017-02-16Merge "Remove deprecated metering_secret"Jenkins1-1/+0
2017-02-16Merge "OVN bridge mappings for tripleo"Jenkins1-0/+11