Commit Graph

127 Commits

Author SHA1 Message Date
Andreas Jaeger fb3f6f99b1 Retire repository
Fuel (from openstack namespace) and fuel-ccp (in x namespace)
repositories are unused and ready to retire.

This change removes all content from the repository and adds the usual
README file to point out that the repository is retired following the
process from
https://docs.openstack.org/infra/manual/drivers.html#retiring-a-project

See also
http://lists.openstack.org/pipermail/openstack-discuss/2019-December/011647.html

Depends-On: https://review.opendev.org/699362
Change-Id: I32d0e133270d39e9aad29e22c4465bc2083cf89f
2019-12-18 09:51:17 +01:00
Mikhail 40f9efe491 Add certificate for nova-compute-ironic
Change-Id: Iea8593b203762415ee55a74edb03c0e7836d1698
2017-03-22 17:18:26 +04:00
Sergey Reshetnyak e8519e545d Add support cell_v2 api
This patch adds support cell_v2 api in nova.
For ocata cell_v2 api should be enabled.

Change-Id: I8b10555cea82bbd870d24d919bdddac74dc96f91
2017-03-16 16:47:46 +03:00
Jenkins d686c164c3 Merge "Fix novnc ssl issue" 2017-03-16 08:53:09 +00:00
Proskurin Kirill b09e45fa68 Fix novnc ssl issue
Change-Id: I7a7e2f940bf5b4b3485537c8b0f069910bbc0065
2017-03-15 19:51:52 +00:00
Mikhail 3d247e4307 Fix keystone url for ironic
Change-Id: Ie9f1f0af282bd35f64457994635ddbbe81dbf522
2017-03-15 15:16:08 +04:00
Mikhail 4b584863f2 Add missed letter in scheme
Change-Id: Id032066e597515a5f59e3adbbc0fa6f38db09c37
2017-03-15 13:05:03 +04:00
Sergey Reshetnyak aa75bd7512 Put cacert for nova-compute
Nova-compute use cert for auth in keystone

Change-Id: Iaa0015e53908531901bf11c480a1a7946cf6ca03
2017-03-14 15:42:55 +03:00
Sergey Reshetnyak 0798673a52 Specify keystone api version for placement api
Change-Id: I24b5fc302b92a188af039372b1d1a67f44059b75
2017-03-14 15:06:07 +03:00
Jenkins e25545fb03 Merge "Add basic support for hugepages" 2017-03-14 07:56:27 +00:00
Jenkins 00032c8de8 Merge "Allow to read certificate to all users" 2017-03-13 15:13:41 +00:00
Sergey Reshetnyak 9ffe61ce9a Allow to read certificate to all users
Change-Id: If619a55e1076ff3446dbffb3287f90a7a4737b0d
2017-03-13 17:34:41 +03:00
Ilya Chukhnakov f2643a67d2 Add basic support for hugepages
This patch adds basic support for running Nova/libvirt with hugepages
enabled. The /dev/hugepages mount point and the mem_page_size flavor
property are hardcoded for the scope of this patch.

This change is a dependency for DPDK enablement in fuel-ccp-neutron.

Change-Id: I0a22bbe4a81d845af743275c6c9c91de7d9ae464
2017-03-13 17:27:42 +03:00
Elena Ezhova 8368c5da0a Add SR-IOV support
This change adds options needed for configuting SR-IOV on
the Nova side.

Change-Id: I022391828c3fe15d4ed9dc4dbdc28ce8e91ca71f
2017-03-10 14:31:04 +04:00
Andrey Pavlov 4d646a0d53 Store sensitive configs in secret
Change-Id: Ie6aa2c5a6fdc16491cb285880dc02ef78722447f
Depends-On: Ie6a9833cdf73b076e24204d47e5898dfb24de43e
2017-03-09 10:11:03 +00:00
Sergey Reshetnyak f8e2969f59 Add TLS support for placement api
Change-Id: I30d5c8e3e226cddaa795ea864f12b4dbb5e3ab90
2017-03-07 17:20:49 +03:00
Sergey Reshetnyak 6271ff2f1a Add Placement API service
This is a separate REST API stack and data model used to track resource
provider inventories and usages, along with different classes of
resources.

SSL support for placement api will be added in separate CRs.

Change-Id: I8bec585dd5d9eb7f52c1cd50e1e3d44aba6bbe9d
2017-03-07 17:18:51 +03:00
Jenkins 3fff505014 Merge "Make export of certificate depends on general option" 2017-03-06 10:14:27 +00:00
Jenkins 88e7544475 Merge "Adjust to per-service configuration" 2017-03-03 13:57:37 +00:00
Sergey Kraynev c4a2bbe4f0 Make export of certificate depends on general option
Nova communicate with different services, which can be under SSL in the
same time, when Keystone will be without SSL.
It's rare, but possible.
This patch makes exporting certificate for job depended on general
option "create_certificates".

Without it Nova under SSL with Keystone without SSL failed due to missed
certificate for Nova https endpoint.

Change-Id: I273707dc175b4ae026924af4f296e14af0bb23ca
2017-03-02 08:34:37 +00:00
Artur Zarzycki a78d9aba2e TLS support for Nova services
Change-Id: I36f67df4f02d80ba293fc7d8d496ad9ed6d14032
2017-03-01 11:50:38 +01:00
Andrey Pavlov f9fce58424 Adjust to per-service configuration
Change-Id: I7951e81635eb2c24fc2bffa2c58ea7acef9be4d4
Depends-On: Ia4d29167cea6dfd19a1970706aafda51a31d5b24
2017-02-28 11:24:18 +00:00
Jenkins 297306266b Merge "Make debug option name consistent for Nova" 2017-02-21 07:07:55 +00:00
Andrey Pavlov 3a67a1b366 Moving tls flag from percona to db group
Change-Id: I7204d5ab2a27efdc8fc5f814d36f892f9da74cbe
Depends-On: I2ff95f7a1cbb14cb1cd9e35677f95c30a4523340
2017-02-21 06:40:35 +00:00
Sergey Kraynev 674bb7cbf3 Make debug option name consistent for Nova
Change-Id: I2535e6ce5e2afc265a25c2a02683f5b953a0d577
2017-02-21 06:38:26 +00:00
Proskurin Kirill 7abcf02247 Fix flavors creation
Plus rename libvirt tls option

Change-Id: I0b8b043047479a464183ddc20eaf0e0101806094
2017-02-20 12:57:27 +00:00
Ilya Kharin d0855d4389 Add online data migrations for Nova
This patch adds an additional actions for Nova to simplify a manual
transition procedure.

Change-Id: Ide1162cd6f9d42c87d6913dd2680f37e7dd100a1
2017-02-20 13:08:19 +04:00
Jenkins 916d459827 Merge "Add DB sync action" 2017-02-16 12:35:42 +00:00
Andrey Pavlov 6381494916 Fix typo
Change-Id: Icd1c9e8437106a38cbd9c6a59e6fa2c63ec21495
2017-02-16 10:04:18 +00:00
Jenkins ca5d3d857b Merge "Use keystone_authtoken macros for auth" 2017-02-15 19:59:33 +00:00
Sergey Reshetnyak b46349bf6b Add DB sync action
It's needed for manual upgrade database schema

Change-Id: I327872b904ad3fb0679d384f3e4862446c29e987
Depends-on: I425e028fcabf326d582a1d2e8fd45f761cd1a66c
2017-02-15 20:26:21 +03:00
Sergey Reshetnyak 7e14828ef8 Use keystone_authtoken macros for auth
Change-Id: I5ae6541327e9db1ef1dc60107a7f27b48f73d14c
Depends-on: Icd3a2276097a52e77a31cb7eeeffb2d5bca8492b
2017-02-15 16:12:55 +03:00
Proskurin Kirill 7e61ea00c8 Add DB SSL support
Change-Id: I5c0dc0646018946eaa2647bd6a8691ebf664d102
Depends-On: I9e6d9ee439cab734eba02320d58ccfcd73e23106
2017-02-13 12:15:56 +00:00
Jenkins 609b4a394f Merge "Messaging multi-backend support" 2017-01-30 13:23:00 +00:00
Kirill Bespalov 0fd1ecf92f Messaging multi-backend support
Allow to set backend-related dependencies
and configurations for oslo.messaging.

Change-Id: I3112a12f972cbaa3c72644c25568976a687966d0
2017-01-27 13:45:57 +00:00
Bartosz Kupidura 8feb3b5045 Add annotations for prometheus
Change-Id: I2ffb64413d4cec25e53d2f463fe2a14172056271
2017-01-19 12:56:42 +01:00
Sergey Kraynev 8394a82409 Implement bootstrapping for custom nova flavors
Previously nova just created default flavors. This patch adds ability to
specify custom flavors in ~/.ccp.yaml.

Also this patch renames job to more general format and moves all default
flavors to defaults.yaml config. Now Jinja loop was moved to service
definition yaml, which create one job per one flavor.

Bootstrapping is enabled by default.

Change-Id: I07daad9be8b4ccbc5a8e618351e8897af7d61672
2017-01-10 18:12:03 +00:00
Proskurin Kirill e0c2171e8a Fix for ingress fix...
Change-Id: Ib6246c94a1bf7deb4ac5478d56347a28e7e37081
2016-12-29 16:57:13 +00:00
Proskurin Kirill 2cd78e32ff Use https if ingress is enabled
Change-Id: Id9824a9c7bb21c408925200592355edc6934f7f0
Closes-Bug: #1653075
2016-12-29 14:03:34 +00:00
Andrey Shestakov 4d5ce34116 Add nova-compute-ironic
nova-compute-ironic service is same as nova-compute, but with the special
compute_driver and few config options required for Ironic.
While Ironic has poor integration with Nova, this service cannot be run
with regular nova-compute service on same host.

Change-Id: I5b6975f2b0fc5fb4002f8ecfc530c4c69ef53e43
2016-12-26 17:29:35 +02:00
Proskurin Kirill 02d280216f Removed unneded probes. Merry Xmas!
Change-Id: I09905ee50827e30b9589afcf580d2ad822db4a70
2016-12-26 13:12:03 +00:00
Jenkins 59d59f4fad Merge "[WIP] Bump libvirtd version to 2.4" 2016-12-23 15:18:07 +00:00
Jenkins f92dc58613 Merge "Add searchlight notification driver condition" 2016-12-22 21:06:48 +00:00
Peter Razumovsky 2a6cca8d78 Add searchlight notification driver condition
Add condition to nova conf to update
oslo_messaging_notifications/driver to searchlight
required value if searchlight is listening nova.

Change-Id: Ic9f348119ed2db6dcc672acad3db4e91e8700323
2016-12-22 12:00:24 +00:00
Jenkins 5d99556032 Merge "Use git.openstack.org url instead of github.com" 2016-12-22 11:12:41 +00:00
Sergey Kraynev 40edb18dab Use git.openstack.org url instead of github.com
Change-Id: I28de764586691240452a06caa23961a824c72424
2016-12-22 11:02:26 +00:00
Marek Zawadzki 4470ca962b Configure TLS for libvirtd in Nova
This patch adds optional support for TLS encryption in libvirtd endpoints using
certificates.
Without encryption, libvirtd listens on private interface of K8s node without
any authentication thus allowing connections from any host on the internal
network.

TLS for libvirt is ENABLED by default and can be disabled in fuel-ccp-nova's
defaults.yaml file. When using TLS, CCP operator has 3 options:
1. Use sample, self-signed wildcard certificates valid for 10 years built into
config files (e.g. for testing purposes) - default.
2. Regenerate above certs using a script provided in tools/.
3. Provide own certificates.

The TLS configuration provided by this patch uses workarounds to make wildcard
certifcates work and should be used for testing purposes only.
The reason to have TLS enabled by default is to run all tests (e.g. CI) with
encrypted communication and catch possible errors.

An implementation more suitable for production usage may follow in a separate
patch.

Change-Id: I1d770e3618e2f5a32573b7ded74b11df18338f85
2016-12-21 15:22:52 +01:00
Jenkins a1c93aafb6 Merge "Enable SameHostFilter and DifferentHostFilter in nova-scheduler" 2016-12-19 13:56:38 +00:00
Proskurin Kirill 771d41e7dc [WIP] Bump libvirtd version to 2.4
Only testing packages available(no backports).
That means - libvirtd and compute containers now contain major lib
changes comparing to the rest of containers.

I have to add new daemon to address new libvirt behaviorm plus
I have to override the OS upper-constrains to match the libvirt
2.4.0 version.

Do we want this? :-)

Change-Id: I3860238eeaa055609ef9217ee587eabad7cc6ebc
2016-12-16 16:14:01 +00:00
Proskurin Kirill 450728a867 Keep the libvird domains configs in a volume
This is needed for libvirt to recover domain configuration
after restart. Overwise it wont detect running\failed VMs.

Change-Id: Id2695643d03387f0193b831b130a4a7bfe75b1a0
2016-12-15 16:21:56 +00:00