The Cinder NVMeoF deployment YAML has a couple of issues addressed in
this patch:
- Incorrect port is being used. According to the NVM Express specs: "TCP
port 4420 has been assigned for use by NVMe over Fabrics". And that's
the port default in Cinder as well.
- Instead of loading ``nvme-rdma`` we should load ``nvme-fabrics`` so it
will automatically load the right module when connecting (``nvme-tcp``
or ``nvme-rdma``).
- There is no need to load ``nvme`` module, since that's only used for
local nvme volumes, and we care about remote modules.
- Controller nodes also connect to storage (for example for backups), so
we need to load ``nvme-fabrics`` there as well.
- An iptables rule to allow port 4420 is needed, just like the one we
have for iscsi (port 3260).
- Add a new CinderEnableNVMeOFBackend parameter, which triggers
the configuration of the LVM volumes, mirroring the behavior
of CinderEnableIscsiBackend.
Change-Id: I619914a37450dae3dcccbd28e898ca81009bb2bb
Adds the IronicEnableNovaPowerNotifications THT parameter.
In the undercloud environment set the parameter to `false` so
that the undercloud's ironic-conductor don't attempt to send
power notifications to a non-existing nova service.
Depends-on: https://review.opendev.org/868414
Closes-Bug: #2000308
Change-Id: Ifc5b14250fd7579fc61425b2f6a01f06f07d3418
CephHciOsdType and CephHciOsdCount parameters, used only
by the deprecated derive parameters feature, should be
removed. They were missed during initial clean up.
Change-Id: Iaefc0347ac18764a683fde82075adb3067861ebf
There are cases where it is necessary to change the default cipher
used by galera (example: FIPS).
This commit adds a new parameter called MysqlGaleraSSLCipher to
easily override the default value 'AES128-SHA256' if required.
Change-Id: I7f47741d4b2a5a3473d24439689cc358bf7738f0
This patch adopts the recommendation outlined in OSSN-0090 [1], in
which two instances of the glance-api service are deployed:
- A "user facing" glance-api service, accessible via the Public
keystone endpoint.
- An "internal facing only" service, accessible via the Admin and
Internal keystone endpoints.
The user facing instance is configured so it does not report any image
location information. This is achieved by configuring glance-api.conf
with the show_image_direct_url and show_multiple_locations set to False.
The internal service operates on a separate TCP port (defaults to 9293)
with its own glance-api.conf that configures show_image_direct_url and
show_multiple_locations set to True.
In order for cinder and nova to have access to the image location data,
both services are configured to access glance via the internal service.
[1] https://wiki.openstack.org/wiki/OSSN/OSSN-0090
Closes-Bug: #1822540
Depends-On: Ideb5a951d538d9e2c7cca11dfe0e8b99520de959
Depends-On: Ib6188505197d0a267dbd8c4d96f12f31f7b5c9f0
Change-Id: Id093613f9d410eb3fe5564a724c0f75275eeb4e8
VMAX was rebranded to PowerMax and the old driver was deprecated.
Because current TripleO supports the new PowerMax share driver and
the configurations for old VMAX driver is known to be broken, this
removes support for the VMAX share driver.
Change-Id: I8031f6c66dd1feae303e7b2c3eeddfb8b532c676
These services were deprecated during Xena cycle by [1]. Since we have
created the Zed release, now we can remove the features deprecated
before that.
[1] 18651160a9
Change-Id: Ib248ec4bec57a5d747a1cf35157084d2cb51b566
This patch adds support for IBM Spectrum virtualize family (Svf) driver.
With this new tht for Svf, there is no need to use tripleo's ExtraConfig
technique to configure the backend.
Depends-On: I3c74f492d9d34eb8e16d9a203b5f02714b02f69a
Change-Id: I59c38368356595254e8617ef30157040fc204f92
Add file to the reno documentation build to show release notes for
stable/zed.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/zed.
Sem-Ver: feature
Change-Id: I82487e21b0c27d31612fed70dd1298d9b4ecbcf8
Currently, Cinder RBD storage backend is configured as part of
cinder-volume-container-puppet.yaml.
This change will just relocate the existing cinder RBD parameters in
their own template. There are no new parameters, and the existing parameters
retain the same default values
Change-Id: I73008a3ff38bafa987f5c2be6fb34d2d110bbaef
Neutron resources such as port should not be created as part of stack
since we replaced undercloud heat service by ephemeral heat and now
we should use the pre-provisioned neutron resources. This change
removes the remaining template files to create neutron resources.
Note that port_from_pool template is still kept, because it still works
without Neutron and has never been actually deprecated.
Change-Id: Id9223609a01e388afe8f97b5cd3f7e3503c5d430
FFUv3 (Train->Wallaby) and mixed-rhel stories require possibility to
run modular libvirt on el9 hypervisors and monolithic libvirt on el8.
It is not clear yet if we might need a new ComputeEL8 role, or not.
Create legacy service OS::TripleO::Services::NovaLibvirtLegacy to run
monolithic libvirt on such computes that are supposed to stay on
RHEL8.4 (el8) for some time.
Related: rhbz#2136163
Signed-off-by: Bogdan Dobrelya <bdobreli@redhat.com>
Change-Id: I0476851066a5c3e22e09ff02ed4bb19a7eff71a7
There are cases where the default allotted time (10s) is not enough.
This only works during cluster setup.
Change-Id: Ieecb8ce044123fbfcca9ee2d70ca9bad616b7cda
This change introduces a new implementation to manage CA certificate
files by ansible, which replaces the existing one by puppet.
Depends-on: https://review.opendev.org/743620
Change-Id: I241f3d635e36a1497a1146fdd4c1db7dfde28dc8
The only supported firewall engine is nftables from now on.
Tripleo-ansible has been cleaned from its tripleo_iptables related
resources and actions, meaning we don't need to keep the FirewallEngine
anymore.
This patch also removes an old and deprecated upgrade action related to
puppet-firewall - since Train, we're using tripleo_iptables and related,
meaning there shouldn't be any trailing config at this point. Especially
since iptables and ip6tables services are now deactivated for good.
Depends-On: https://review.opendev.org/c/openstack/tripleo-ansible/+/860063
Change-Id: I18d23125a468cb2db5ff33979d8b810a0207819a
Enabling this parameter will identify user and project
names from the polled metrics [1].
These details are collected by making additional requests
to keystone service, depending upon the scale of environment,
number of projects/users and the count of metrics polled in
every iteration, enabling this could overwhelm the keystone
service.
[1] Iee5dbf09a1fd3ac571746fc66d2683eb8e6a1b27
Depends-On: https://review.opendev.org/c/openstack/puppet-ceilometer/+/856839
Signed-off-by: Yadnesh Kulkarni <ykulkarn@redhat.com>
Change-Id: Idcc3cd2c9773fd8ee3464a9a085682639a6e5dab
'dns_domain_ports' extension allows dns_domain to be set
for ports and ML2 OVN supports it since wallaby[1]
and ML2 OVS long before that.
This patch replaces 'dns' with 'dns_domain_ports' for
NeutronPluginExtensions in ml2 plugin heat template and
all environment files.
'dns' extension not equired to be enabled explicitly
with 'dns_domain_ports' as it inherits all the capabilities
of 'dns' extension.
[1] https://review.opendev.org/q/Ic269902ef7a16893c4ea624b04347d04db4f52d9
Related-Bug: #1990480
Change-Id: I25f75d7bd8864ea132246cea79e073232d664d76
Ghanshyam Mann
OpenStack Release Bot
yatinkarel