summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2018-03-10Merge "Fixes ceph key import failures"Feng Pan2-0/+78
2018-03-09Fixes ceph key import failuresTim Rozet2-0/+78
There is an issue with HA deployments where sometimes key imports fail for Ceph which seem to occur around 50% of the time. When logging in after a failure, the key import seems to work which indicates it may be a race condition. In addition, sometimes the keyring that is created is missing the "caps" section of the file, which will also fail import. This patch adds a retries for a minute to try to import the key. It also moves creating/importing to the same Exec because there is evidence that the file is being modified by some other process right after the file content is created in the previous exec. JIRA: APEX-563 Change-Id: Ie8cfeb4803f6bed95f9e612eeb37c5cdf2d76617 Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-03-08Merge "Fix URL anchor in apex document."Feng Pan2-4/+4
2018-03-07Merge "Adding libguestfs-tools as dependency"Feng Pan1-0/+1
2018-02-23Merge "barometer: fix barometer apex build"Tim Rozet3-21/+57
2018-02-21Typo fix for disabling ipxeDan Radez1-2/+3
JIRA: APEX-535 Change-Id: If1d074d01246407b322d5a4bc27dfde35349e9db Signed-off-by: Dan Radez <dradez@redhat.com>
2018-02-16Merge "Fixes ensuring VBMCs are actually running"Feng Pan3-4/+64
2018-02-16Merge "Fixes stale undercloud delorean repos"Feng Pan4-2/+46
2018-02-16Fixes ensuring VBMCs are actually runningTim Rozet3-4/+64
We currently start VBMCs using CLI due to issues with the VBMC python lib. However when we start them, there is no check to make sure they are actually changed to 'running' status. This patch adds logic to check (up to 5 times) to ensure each VBMC is running or raises an error. Note this is for virtual deployments only. JIRA: APEX-527 Change-Id: Iab7ee3b76292d6fc547f18c83f23c04205e9bb2e Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-16Add http(s)_proxy handling to apexDan Radez9-9/+60
JIRA: APEX-512 Change-Id: I875bd99203b425e448e7a3f64eb9a8f99d03ddaf Signed-off-by: Dan Radez <dradez@redhat.com>
2018-02-16Fixes stale undercloud delorean reposTim Rozet4-2/+46
When we build artifacts for release, we try to freeze the disk images and artifacts we use for deployment. This includes the delorean repo which provides OpenStack packages. This repo however expires after a couple months and then if any packages were missing in the Undercloud released artifact, they will attempt to be downloaded during install and fail. This patch adds some logic to detect if there is internet connectivity, and if so then download and update the delorean repo on the undercloud. JIRA: APEX-565 Change-Id: I58c28437fb5c5b179033c939377fd97aefbf427c Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-15Ensures v4/v6 iptables filters are loadedTim Rozet1-0/+6
We configure host iptables to open different ports for VBMC. This may fail if the iptables filters are not loaded. JIRA: APEX-521 Change-Id: Ia33032c29aba3555551e39b4f819087aeafe05d9 Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-15Adding libguestfs-tools as dependencyRicardo Noriega1-0/+1
Needed for virt-customize the images Change-Id: Ide3fff2c6b850047add6eeed4082c518c36e6e74 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2018-02-15Fixes python2 docutils req and also installs ansibleTim Rozet6-2/+26
For some reason we were requiring python2-docutils in to build our rpm instead of python34-docutils. Patch also includes some logic to install ansible. JIRA: APEX-515 Change-Id: I1b85e5b4b29f74f5ff5399296f24831c334c289c Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-13Merge "Adds barbican service to deployment"Feng Pan1-0/+2
2018-02-13Adds openstack-utils to overcloudTim Rozet1-0/+2
Package allows user to do openstack-status to see state of services. JIRA: APEX-352 Change-Id: Ie68cad5745786c8764ae20c2d3ad26dd05e5480b Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-13Adds barbican service to deploymentTim Rozet1-0/+2
This service is required for creating encrypted volumes for storage. JIRA: APEX-531 Change-Id: Ied5ea1d6921ef96c1a352dba523d6f37245608e2 Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-09Merge "Adding L2GW Scenario"Tim Rozet7-1/+34
2018-02-07Allow disabling ipxe for provisioningDan Radez5-16/+25
JIRA: APEX-535 Change-Id: I52d17e962fc4a504db1ddbc20df0ac56a208f34b Signed-off-by: Dan Radez <dradez@redhat.com>
2018-02-07Adding L2GW ScenarioRicardo Noriega7-1/+34
This scenario allows you to install L2GW Neutron driver and point to OpenDaylight as service provider. apex-tripleo-heat-templates: I37039207bc7cf9965d26e6dfa034e84bf9b7224d Change-Id: I0dfd37bcc5060f0ad8caa95e1f87a7411bd6e723 Signed-off-by: Ricardo Noriega <rnoriega@redhat.com>
2018-02-07barometer: fix barometer apex buildMaryam Tahhan3-21/+57
apex-tripleo-heat-templates: I3250b57316b4ec85e0558f1b512f6f3ed7c349fb apex-puppet-tripleo: I95698d69c58e0c36ae88cc2687073a05b514592c Change-Id: I5f33cd2a2842051a77c89cb11f97e8e37d1d0185 Signed-off-by: Maryam Tahhan <maryam.tahhan@intel.com>
2018-02-07Fixes missing CephClientKey generationTim Rozet3-33/+3
In newer OOO deployments, the keys for ceph are dynamically generated. Also removes tacker client patch for symmetrical as it is already present in stable/pike: https://github.com/openstack/python-tackerclient/commit/682c9651085214a58434ad6016d93b2cdc8f3462 JIRA: APEX-563 Change-Id: I01fb617b026bae5d6e265a4afbac270939627c5a Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-02-01Fix URL anchor in apex document.Tomofumi Hayashi2-4/+4
The latest OPNFV document template makes html file separately, hence index.html#<something> is invalid. This fix changes anchor URL to support separate file. Change-Id: Ic48c062e118d2faede53e8c9eaecbb99e58fddfb Signed-off-by: Tomofumi Hayashi <tohayash@redhat.com>
2018-01-31wrapping up deploy items for aarchDan Radez4-3/+15
Change-Id: Ib5f4715d851dc91be6a57fcb5d18a0557a7b0c7f Signed-off-by: Dan Radez <dradez@redhat.com>
2018-01-29Merge "Make introspection optional"Tim Rozet3-5/+13
2018-01-18Enables trunk ports with bgpvpn scenarioTim Rozet1-0/+1
This is enabled in regular ODL deployments but is missing from the bgpvpn scenario. Trunk ports are requested by SDNVPN team for testing with bgpvpn. apex-tripleo-heat-templates: I1b4d3eea61e29e1ede0e06d78fde842ef13b7b8e Change-Id: I00a36b56045fa1114d8407fe5005128c46ecefb4 Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-01-15Merge "Fixes including default SDN env file in deploy cmd"Tim Rozet2-0/+33
2018-01-11Merge "barometer: move to opnfv puppet repo"Tim Rozet1-2/+3
2018-01-11Fixes including default SDN env file in deploy cmdTim Rozet2-0/+33
The latest method to deploy opendaylight features upstream is to include the default SDN file and then add-on the feature env file which should override any default settings in the previous SDN env file. For example for bgpvpn: openstack overcloud deploy -e <tht_dir>/neutron-opendaylight.yaml -e \ <tht_dir>/neutron-bgpvpn-opendaylight.yaml This change documents the recursive function used to find the SDN env files and includes the default for the SDN controller. JIRA: APEX-555 Change-Id: I4270932ca4fbc21ea54e965d9d6491424f4463e2 Signed-off-by: Tim Rozet <trozet@redhat.com>
2018-01-05Disable gpgcheck on the kubernetes repoTim Rozet1-2/+2
JIRA: APEX-560 Change-Id: I0c8da2e841f175a1724b81d73fdf08c706408b9b Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-12-21Merge "Updates OpenDaylight BGPVPN driver"Tim Rozet1-1/+2
2017-12-14Updates OpenDaylight BGPVPN drivertomsou1-1/+2
apex-tripleo-heat-templates: Ib94b0182fd5fbc3a254cae5862a82982bf3131be Change-Id: Ie1e73edce9027056fb2e2870ee4705bf69251e11 Signed-off-by: tomsou <soth@intracom-telecom.com>
2017-12-13Enables br-ex on controllers in SFC scenarioTim Rozet1-3/+0
ODL's current behavior is to select a node to serve as the routing/L3 node in a deployment. The selection is random, and it could end up choosing a control node. Therefore the control node needs to have external network connectivity so adding br-ex to the controller which will enable this via default ProviderMappings. JIRA: APEX-558 Change-Id: Ie3044e5711ba62d73b83d69cde369e7452958844 Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-12-12docs: fix default password and yum.repo.dRyota MIBU2-3/+3
- password for root in debug mode is defined in DEBUG_OVERCLOUD_PW document has to be updated - '/etc/yum.repo.d' is the right yum repo directory in Cent OS 7 Change-Id: Ia97e3878bd30d562bd3c3b7776e80440b20a4111 Signed-off-by: Ryota MIBU <r-mibu@cq.jp.nec.com>
2017-12-05Make introspection optionalDan Radez3-5/+13
- exposes new option to end users to skip introspection - moves the logic to decide to introspect or not into python JIRA: APEX-536 Change-Id: Ieaff11362ff8f906daa98d301d3d473ad549d08f Signed-off-by: Dan Radez <dradez@redhat.com>
2017-12-04Merge "Add missing packages to iso build"Tim Rozet1-0/+5
2017-12-02Merge "Fix nested kvm detection and enablement"Tim Rozet2-12/+25
2017-11-30Add missing packages to iso buildFeng Pan1-0/+5
Change-Id: I5d749a406c5d82f72b0609e85078fe27eb421d60 Signed-off-by: Feng Pan <fpan@redhat.com>
2017-12-01Merge "Fixes inserting ceph OSD into compute role"Feng Pan1-1/+9
2017-11-30Fix nested kvm detection and enablementFeng Pan2-12/+25
- Fix ansible kvm_intel kernel module reload when trying to enable nested kvm - Add "--libvirt-type qemu" to deploy command when nested kvm is not enabled. JIRA: APEX-514 Change-Id: I0e659b1c99b5732854d723e1cb049845cb60ef37 Signed-off-by: Feng Pan <fpan@redhat.com>
2017-11-30Fixes inserting ceph OSD into compute roleTim Rozet1-1/+9
The lineinfile was not actually inserting the CephOSD line because it was already present later in the file (regardless of 'insertbefore'). Therefore we can fix it by simply removing the CephOSD line before we try to set it, since we do not need it in the storage role anyway. Change-Id: I8c8d9b6baccfc77ea582fab6ad438b02293f96fb Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-11-30Merge "Disable introspection extras"Feng Pan1-0/+1
2017-11-30Merge "Bump RPM versions to 6.0 for Fraser"Feng Pan4-4/+12
2017-11-30barometer: move to opnfv puppet repoMaryam Tahhan1-2/+3
The barometer puppet scripts have been moved to the barometer repo. This change migrates the Apex builds to using the barometer repo. Change-Id: I064c40746d19e5deb305c503128b357479b7149c Signed-off-by: Maryam Tahhan <maryam.tahhan@intel.com>
2017-11-29Disable introspection extrasTim Rozet1-0/+1
According to the documentation introspection extras attempts to collect more hardware info during inspection. This is causing problems for some users and we do not need it for our deployments. JIRA: APEX-534 Change-Id: Ia4a72ed14fb744a10d02ee2d3f4e283cc7208c2b Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-11-29Fixes permissions and owner for undercloud.qcow2Tim Rozet1-1/+2
The undercloud storage disk is copied during our deployment from modified underloud from upstream. We copy it as owner root with wrong permissions. This changes the owner to qemu and sets the permissions the same as the other storage disks that virsh creates for overcloud nodes. Change-Id: Ie884a586f91be3461e4b511e224d061639f04c69 Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-11-29Bump RPM versions to 6.0 for FraserTim Rozet4-4/+12
Change-Id: I1bf736107627f0da7a027b460f19b53dac3045c3 Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-11-28Fixes upstream deploymentsTim Rozet3-2/+11
There was an issue with patching the overcloud where the patch binary is missing, making it impossible to apply patches. This change install patch now on the image. Also, although deployments were successful, storage was not working. This is because by default upstream does not apply Ceph OSDs to compute nodes for hyperconverged Ceph, but we use this as our standard deployment in Apex. This patch inserts CephOSD into the default Compute role. Note: we normally override role's services in regular Apex deployments so we do not hit this issue there. Change-Id: I5bddda4784dc00148395863ae0990343a4159602 Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-11-27Migrate default ODL from Carbon -> NitrogenTim Rozet12-31/+17
Change-Id: If64212b33bf9ad3b9900ca18b39c90839f745843 Signed-off-by: Tim Rozet <trozet@redhat.com>
2017-11-17Removes using https with rdo-releaseTim Rozet1-1/+1
We dont need to use https with rdo-release and it can cause issues for ansible. Change-Id: I081228a05d68f987fa02480bcd1bf216573550f1 Signed-off-by: Tim Rozet <trozet@redhat.com>