instack-undercloud is no longer in use by the TripleO project. Removing
the code to avoid confusion. Stable branches will continue to be
maintained for their life however no new features should be added.
Change-Id: I63a813c7c1ffd30ca30017133d31a497b77a9a4d
Blueprint: remove-instack-undercloud
There have been some reports of users misinterpreting
where to place configuration for the provisining subnets
in undercloud.conf. The example text for the subnets leads
to users adding the subnets section directly after the
subnets option. I.e in the middle of the DEFAULT section
of the ini file.
This change drops the example. The ctlplane-subnet section
is there as an example already.
Related-Bug: rhbz1585497
Related-Bug: #1778779
Change-Id: I417623db410330058d30fe7435112f01a0f72c83
They are deprecated and will be removed from Ironic. A similar change
was already done to the containerized undercloud.
Change-Id: If442f103adc03ec97f9e995d5e2bc47dfc097f90
Introduce docker_insecure_registries that is an array of host/port
combiniations of docker insecure registries. The default value will
be the previous parameter that were hardcoded, but now we can easily
override it in undercloud.conf.
Note: the feature is already supported for the containerized undercloud
but was only missing in instack-undercloud. This patch will be
backported.
Depends-On: I14fda3481ac88429648bed8edb2f4469b33be957
Change-Id: I402ebb80b1d755cdb0c3c28fd542121bc60cb144
Closes-Bug: #1767373
There is an issue with the _validate_no_ip_change function
where it doesn't work correctly with a custom net_config_override
file.
This patch resolves validation issue so that custom os-net-config
templates are taken into account. Additionally it makes it so
that the net_config_override can be empty, thus providing the
user a means of disabling os-net-config if they choose to do so.
Change-Id: Iada099a6bddc7927d26b19776e705b1ac231b2e5
Depends-On: I69eb812af2d653cb3eb29694ae29b57ebb2de53d
Closes-bug: #1764507
It looks like a change was made without running tox -e genconfig,
so the checked in sample config is out of date.
Change-Id: I78cb5d734613fade44003be4fc2d87f1b69c6508
This enables TLS by defalut in the undercloud. This is done by setting
the generate_service_certificate option to True by default, although,
the deployer can turn it off if needed.
Change-Id: Id329081c06343373309d6880d464ba99aba0c7be
This has been unsupported since 2016's puppet-ironic commit here:
I0f242a7e1c28c4007b3c2d955dbd3b29086e92f1
Change-Id: Ic219fcdf2695c08b629015a0c387629d01f86a20
Other OpenStack services clients are being installed as dependencies of
Heat. Octavia support in Heat was included during Queens development
cycle [1]. TripleO deployments will include python-octaviaclient as
requirement of Heat. This means the Octavia client will be installed in
the undercloud and overcloud regardless.
This reverts commit fef5be332e.
[1] https://review.openstack.org/#/q/topic:bug/1737567+(status:open+OR+status:merged)
Change-Id: I727503b6c1acf1953a0ad864ae6288021a745193
Allow installation of the Octavia client in the Undercloud by setting
new option enable_octavia=True in the undercloud.conf. Default is not to
enable.
Change-Id: I2b27dac2f30a126e6519d19cc135ea6eea59e8a9
Masquerading for external access for each routed
network, if enabled.
Implements: blueprint tripleo-routed-networks-ironic-inspector
Implements: blueprint tripleo-routed-networks-deployment
Change-Id: I792b516314302e2c290e63c10fb0fe6881ce7236
Use groups to specify control plane network data. When
we do routed networks we need to provide network data
for each controlplane network/subnet.
Implements: blueprint tripleo-routed-networks-ironic-inspector
Implements: blueprint tripleo-routed-networks-deployment
Change-Id: Ia95ff5c00433c89155727ea5551904c45197e6b0
In this case an additional architecture is any architecture that is NOT
the same as the one running the install.
Blueprint: multiarch-support
Change-Id: I23f438cb41ebc454d4a4351901a86452e2b0d482
The port is firewalled off by default so mysql is not reachable except
to localhost users. In any case it is good to set a password for the
mysql root user.
We are 'reusing' the user_db_password parameter, because it is actually
unused, instead of adding yet another parameter.
Tested this change against an existing undercloud and observed that
the mysql root user got a correct password and that the /root/.my.cnf
file got generated.
Closes-Bug: #1742191
Change-Id: I408ce3a0fe2ab8e86bcc280256cdb51688efde75
Ironic is going to deprecate classic drivers in Queens and remove them in Rocky.
This change enables hardware types ilo and idrac that correspond to already
enabled classic drivers pxe_ilo and pxe_drac. It also adds support for other
common hardware types, but does not enable them by default.
The enabled_drivers option is deprecated.
Partial-Bug: #1690185
Change-Id: Ib505f3512627c49d17d6adcdc2622bdfe580a84f
Ceilometer API is deprecated and disabled in pike. Lets remove
this starting queens as its not supported anymore.
Change-Id: I738e8743a315cc2865ba6d1e64c23498e911a283
Collector was moved to legacy mode in pike and
not supported anymore. Lets drop collector
starting queens.
Change-Id: I952103e39f63d278988a73035d7194b9e351ad31
Without being able to do this, users who want to set CloudDomain
during their deployment will have to manually override neutron's
dns_domain config, which either requires custom hieradata or the
reapplication of the customization after each undercloud update.
This is not a good user experience, so we should allow them to set
it once in the config file and never have to touch it again.
It turns out that the Nova dhcp_domain option must also be set,
even though it is a deprecated option. A bug with nova has been
opened to address this in the future.
Change-Id: I61e5fc005aa27ba76f91a2b84fec751af93061b5
Related-Bug: 1698010
Currently it implies that we support booting from volumes in the undercloud,
which is not the case yet. Change the option description accordingly.
Change-Id: Ie2d92f3e5e4301375290a66553e2afb3cec6da80
Closes-Bug: #1692522
Enables two generic hardware types by default: IPMI and Redfish.
Calculates enabled power and management interfaces based on enabled
hardware types. Enables support for ironic-inspector and socat console.
Also fixes enabled_drivers which was using deprecated (and removed)
puppet variable ironic::enabled_drivers.
Part of blueprint ironic-driver-composition and blueprint redfish-support.
Change-Id: I22dd51fa871ad9141af2ad935d248262789780a5
Finally lets disable by default. The use case for telemetry
has been quite slim anyway. The interested users now seem to
be ok with enabling it manually when needed. So lets do this!
Change-Id: Ic35bcf4f789a3f30e4634789e965203be74d2e8c
Ceilometer Collector has been deprecated in pike release. Lets
disable it by default. ALl the data will be dispatched through
pipeline going forward.
Change-Id: I8132418636a6e9a564de16ed8c4d4bfa406c886c
Closes-bug: #1676961
The new `enable_container_images_build` setting allows to control
whether to install the required packages to build container images on
the undercloud. It defaults to 'true' to be backward compatible.
Change-Id: Ia3379cf66b1d6b180def69c2a5b22b2602baacef
This patch adds a new option to configure the docker_registry_mirror.
The motivation is to be able to make use of new infra HTTP
mirrors for docker images.
Depends-On: I4b966e9b9b174ca5a6f57974185e0149ea12f232
Change-Id: I09761ac70454e7f3fe35d0ffe32b1edb0ca217f3
Ceilometer API has already been deprecated in Ocata. Lets stop
deploying it by default on undercloud.
Closes-bug: #1676968
Change-Id: I27ce7d480be1196aff5dec3dfb6e1d7f5651c852
It was deprecated in the Newton release and will be removed in Pike.
VirtualBMC or OVB should be used for development and testing instead.
This is a follow-up to blueprint switch-to-virtualbmc.
Change-Id: Ic868fdb8754acf2dbd660b47fdcbd95608454e9e
Create the Heat API CFN endpoint by including the needed puppet class.
Previously, we were not creating the endpoint.
When using deployed servers where the ctlplane is not routable, you may
want to configure Heat polling and signaling over the public endpoints
instead of the internal endpoints. In order to do so, endpoints for the
CFN service need to be created.
Change-Id: Iefa9d5bd3b03eb4812f24be2ca1ad0fa3a157402
Closes-Bug: #1674827
There was some configuration in hiera template and in
puppet-stack-config.pp, but both were faulty and there was no way to
specify any ntp server.
Change-Id: Ie9e9b5765521250b93a2aed567f253890672d6a8
Closes-Bug: #1664537
The image_path configuration has not done anything since the switch to
using 'image upload' instead. Lets remove this configuration option.
Change-Id: I3d29375e60022b3e861a2f6b96c2892df4d9eb4b
Closes-Bug: #1662981
This is a follow-up to commit 350aeaff66.
1. Change the default driver for new nodes to pxe_ipmitool as it's our
go-to default driver.
2. Add a release note with a link to more details.
Change-Id: I3535cbfbffd2ce394b4e828c53a7fba6ee46fb5c
Implements: blueprint inspector-node-autodiscovery
Disabling either of these features is going to result in a useless
undercloud now, so there's no point exposing them as options.
Change-Id: I2c54ec066fcc321fefe473038631efe9ced61936
When generate_service_certificate is True,
undercloud_service_certificate will not necessarily be set when it
is passed to validation. We need to check if either value is set
when deciding whether to validate vips.
Unit tests for this behavior were missing as well, so those have
been added.
Another consideration for this change is that we have started
passing non-IP values to these vip parameters when configuring
ssl. This is counterintuitive, but apparently works as intended
so let's just rename the parameters and handle both IPs and DNS
names for those values.
Change-Id: I53151d4f555d5d161a3e53ce5f022e3bf3b2ffbd
Closes-Bug: 1643655
store_events is removed upstream from ceilometer.
Use event_dispatcher instead to redirect events.
Change-Id: I425a8093046574a2e0b24a6fe64691b247189716
Closes-Bug: #1657555
With ceilometer API deprecated, we need a way to access
events. Panko provides this for us. This will only be
enabled if enable_telemetry is true.
Change-Id: If241ff2e387996b424206d2f0362ff3caafacdda
Novajoin is a new nova metadata micro-service that registers
instances created by nova with a FreeIPA server, so that we can
take advantage of server/service identities, kerberos credentials,
access and sudo controls etc.
The included modules will cause the undercloud to be registered with
a FreeIPA server, for novajoin to be installed, and for nova on the
undercloud to be configured to use novajoin.
Change-Id: I2e1c18a0174f70dc6e9c1d402caac574e6c81678
Implements: blueprint novajoin
Due to the deprecation policy and giving our users more
time to switch to gnocchi/aodh/panko, We will continue
running ceilometer API for one more release.
This will be set to false in pike release as per deprecation
policy guidelines. Users are expected to completely switch
to other supported services by then.
This support was added in I9e77ed7d285c69d89aea1f62a098a25619c57420
Change-Id: Ib13b097aa242ad4bf5a0177a28ba4d2dae4dca5f
The most recent patch set in this change never passed ci. Since
we're now having nova issues in the undercloud, I'm trying a
revert to see if it fixes the problem.
Closes-Bug: 1655171
This reverts commit 3a12ee67e4.
Change-Id: Ic0f500d7d8b832981664f164314756dd7e224f10
Novajoin is a new nova metadata micro-service that registers
instances created by nova with a FreeIPA server, so that we can
take advantage of server/service identities, kerberos credentials,
access and sudo controls etc.
The included modules will cause the undercloud to be registered with
a FreeIPA server, for novajoin to be installed, and for nova on the
undercloud to be configured to use novajoin.
Implements: blueprint novajoin
Depends-On: I5ffa45bdc400e123079c79e15776ebacdcb24de9
Change-Id: Ia2fdb544460cd39fbfda5970c9bfba22feec6403
Now that ceilometer api is deprecated, lets disable it
by default. You can still enable by setting the
enable_legacy_ceilometer_api param to true.
Change-Id: I9e77ed7d285c69d89aea1f62a098a25619c57420
with ceilometer api being deprecated, we need gnocchi to process
metrics. This patch adds gnocchi on undercloud when telemetry
is enabled.
Implements: blueprint gnocchi-undercloud
Change-Id: I8cca1bee47fae8adf715e70e4ccb61db47c16d98