Commit Graph

685 Commits

Author SHA1 Message Date
Maksim Malchuk 6f59b49ab8 Fix the glob for the custom RabbitMQ configuration
Followup on Id4588f4529a4522e68e22ce58711cb927fa68a9d to fix the
place of the RabbitMQ configuration and there are not only the
rabbitmq.conf and rabbitmq-env.conf but also advanced.config which
also often customized and more other files.

Change-Id: Iff0b28b770753c81ac526afd1ce6f61d77fad25c
Signed-off-by: Maksim Malchuk <maksim.malchuk@gmail.com>
2024-03-22 10:53:02 +00:00
Zuul 2fd1a79db4 Merge "Fix link in release note" 2024-03-14 14:34:26 +00:00
Zuul da80a71b40 Merge "Fix: configure etc-hosts for overcloud group" 2024-03-13 14:16:11 +00:00
Pierre Riteau 142a22deca Fix link in release note
Change-Id: Ib8d47408b851493d0843a82c4d7197bfc8965506
2024-03-13 12:27:38 +01:00
Zuul e7e354989e Merge "Skip buggy release of docker PyPI package" 2024-03-04 14:55:04 +00:00
Zuul 82fb7213a6 Merge "Support credentials for custom DNF repositories" 2024-03-01 23:29:28 +00:00
Will Szumski 9c1951478f Skip buggy release of docker PyPI package
The tag regex is buggy and fails if the docker registry contains a port
number[1].

[1] https://github.com/docker/docker-py/issues/3195

Change-Id: I5d85e751b490ab1e39e417ff8797ca8f8688590b
Closes-Bug: #2054715
2024-03-01 19:08:17 +00:00
Matt Crees 498de81efe Fix: configure etc-hosts for overcloud group
Change the etc-hosts role to run on the overcloud group, as using
``ansible_play_hosts_all`` would exclude hosts when running with a
limit.

Also change the gather-facts-delegated role to run on the overcloud
group. The delegated task needs to be included separately as the hostvar
``ansible_host`` cannot be set dynamically based on a loop item in one
task. We loop over the batch indices here so that the tasks are included
in parallel, rather than in series.

Closes-Bug: #2051714

Change-Id: I0465eafa9e4ff37c96064ea8395f0bd461035b40
2024-03-01 15:18:33 +00:00
Zuul 684a440bae Merge "Make hooks environment-aware" 2024-03-01 14:28:02 +00:00
Pierre Riteau 983baf886a Rephrase kolla_build_neutron_ovs release note
Change-Id: I295d39d0658b6e95f22cd3d3961d94068afd9b49
2024-02-23 09:05:48 +01:00
Zuul 5244733d75 Merge "Make OVS container build regex independent to OVN" 2024-02-19 17:13:44 +00:00
Zuul f2b658ecb6 Merge "Generate KA config before ``kolla ansible run``" 2024-02-16 19:36:21 +00:00
Zuul 24d65075f6 Merge "Support auth configuration for Apt repositories" 2024-02-15 18:15:38 +00:00
Zuul d0575cd59f Merge "Fix wipe-disks role to work on util-linux >= 2.37" 2024-02-15 18:06:33 +00:00
Dawud 3942d29448
Fix wipe-disks role to work on util-linux >= 2.37
On newer versions of util-linux, the ``wipe_disks`` role was not
properly configured due to the fact that ``lsblk -J`` returns a slightly
different output than what was previously returned. Previously the
output would contain a key called ``mountpoint``, however this has been
changed to ``mountpoints``. This has now been fixed by looking at the
new key as well as the old key.

Closes-bug: #2051859
Change-Id: I2a59f4eb3ae27f37fda38e05924315887cb04c41
2024-02-14 10:43:20 +00:00
Seunghun Lee ec5bbf398c Make OVS container build regex independent to OVN
Currently building OVN container images and OVS container images are
mutually exclusive.

This becomes problem when all container images are needed to be built
at the same time.

``kolla_build_neutron_ovs`` is added to let user to build OVS even if
OVN is enabled when it's explictly set to true.

Default value ensures regex mapping behaves normally when
``kolla_build_neutron_ovs`` is not given.

Release note is also added.

Change-Id: I7efe883fce4117a5167b6db4a711004d77a44f81
2024-02-13 11:53:26 +00:00
Mark Goddard db3f22d42d Support auth configuration for Apt repositories
This allows use of repositories and proxies protected with HTTP basic
authentication.

Change-Id: I0ec4ec3e9d60bb1431b44dd6718415214ad80025
2024-02-11 12:49:16 +01:00
Zuul 2d0f797b3e Merge "Build letsencrypt images" 2024-02-09 22:38:50 +00:00
Mark Goddard bd6673477f Support credentials for custom DNF repositories
This allows use of repositories protected with HTTP basic
authentication.

Change-Id: I6c9686bdf736d58738fbe88169e62833cc85d2f4
2024-02-07 09:53:49 +01:00
Will Szumski 8006c65a54 Build letsencrypt images
These are currently not included in the regex we generate so aren't
built as part of the complete set.

Change-Id: I4f79b1b0887df72b11b768593ba45d89e75ce0d6
Closes-Bug: #2052428
2024-02-07 06:55:53 +00:00
OpenStack Release Bot db1d008d9d reno: Update master for unmaintained/yoga
Update the yoga release notes configuration to build from
unmaintained/yoga.

Change-Id: I26cb42955387a425c2af80ec56e3253f16a34a17
2024-02-05 16:06:27 +00:00
Zuul e469e99eba Merge "Ask for confirmation during overcloud deprovision" 2024-02-05 10:50:10 +00:00
Matt Crees bc98c494ae Generate KA config before ``kolla ansible run``
Supports calling custom Kolla Ansible commands directly after a
``kayobe control host bootstrap``.

Change-Id: I19f188cc002f8578618003e90c0a4a154b806e49
2024-02-02 13:25:58 +00:00
Will Szumski 280e84be82 Remove docker devicemapper support
This has now been removed from upstream docker-ce packages.

```
the devicemapper storage-driver has been deprecated and removed
```

and has shown deprecation warnings for some time.

This change also includes some fixes necessary for CI to pass:

* update the Zuul previous_release variable to 2023.2

Closes-Bug: #2051233
Depends-On: https://review.opendev.org/c/openstack/kolla-ansible/+/906858
Change-Id: I263f59ea77e39accffe4febe0d47e56b35d9800e
2024-02-01 14:10:09 +00:00
Matt Crees 74f1bf7eff Ask for confirmation during overcloud deprovision
Prompts the user to confirm before deprovisioning any overcloud hosts.
The user is given a list of hosts which will be deprovisioned. Automatic
confirmation can be achieved by setting ``confirm_deprovison`` to
``yes``.

Change-Id: I6eea5bb7c268912e6f39627f64c92715877311a3
2024-01-22 11:56:17 +00:00
Mark Goddard 0055d384a6 Make hooks environment-aware
Previously it was only possible to define custom playbook hooks in the
base configuration, and not in environments. This could be limiting in
cases where different environments require different hooks.

With this change it is now possible to define hooks both in the base
configuration and in environments.

Change-Id: Ic003c18402177318ac1aa4c2d851263893bd4e9f
2023-12-21 14:45:30 +00:00
Zuul 48176b9b3d Merge "Stop NetworkManager from overriding resolv.conf" 2023-12-12 12:58:49 +00:00
Matt Crees 578a257c38 Stop NetworkManager from overriding resolv.conf
When ``resolv_is_managed`` is set, Kayobe templates resolv.conf. This
patch stops NetworkManager from overriding these changes.

Closes-Bug: #2044537
Change-Id: I90b61dfe03d53c58327d2b15e70b7b8489bdfb47
2023-12-11 11:39:47 +00:00
Stig Telfer 49f91043c6 Fix gateway assignment when seed SNAT is disabled
Fix a logic issue when seed SNAT is not enabled. In this circumstance
Bifrost was generating ConfigDrive data with the default gateway unset
even when one is available on the admin network. This regression was
introduced in Ib847d3420dee374cec067cd8af519b510be04120 [1].

[1] https://review.opendev.org/c/openstack/kayobe/+/898434

Closes-Bug: #2045926
Change-Id: Ifd9f9cd389ac09448fc91dba74f8f09595698b55
2023-12-07 23:22:28 +01:00
OpenStack Release Bot d264a17ed2 Update master for stable/2023.2
Add file to the reno documentation build to show release notes for
stable/2023.2.

Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/2023.2.

Sem-Ver: feature
Change-Id: I9ab85dfddf3b4ae6ba593649ed4310ca8cbec0e2
2023-12-07 10:47:56 +00:00
Pierre Riteau 99d0368693 Clean up release notes for Bobcat
Change-Id: I96f00721c173cf095463424c0ca8779c54943591
2023-12-06 09:38:34 +01:00
Zuul 8e82a6b4a6 Merge "switches: add flag to save configuration on Dell switches" 2023-12-01 02:22:16 +00:00
Zuul 624c7f3893 Merge "Adds initial support for vGPUs" 2023-11-30 22:56:08 +00:00
Zuul 68bb8d6112 Merge "Fix configuration dump with inline encrypted variables" 2023-11-30 14:57:28 +00:00
Will Szumski bd36b5f018 Adds initial support for vGPUs
Adds support for configuring vGPUs on NVIDIA hardware.

Closes-Bug: #2028843
Change-Id: I4c8481f7429dbf50d51e26bd7acee24e16ee6c79
2023-11-30 14:33:32 +01:00
Zuul 409d85758a Merge "Allow more fine-grained groups for ironic, loadbalancer & network" 2023-11-30 11:20:16 +00:00
Mark Goddard 78702d0e30 Fix configuration dump with inline encrypted variables
If inline Ansible vault encryption is used to define an encrypted
variable in kayobe-config, running 'kayobe configuration dump -l <host>'
fails with the following:

  Failed to decode config dump YAML file /tmp/tmp_fg1bv_j/localhost.yml:
  ConstructorError(None, None, "could not determine a constructor for
  the tag '!vault'", <yaml.error.Mark object at 0x7f1e5c7404c0>)

This change fixes the error by using the Ansible YAML loader which
supports the vault tag. Any vault encrypted variables are sanitised in
the dump output. Note that variables in vault encrypted files are not
sanitised.

Change-Id: I4830500d3c927b0689b6f0bca32c28137916420b
Closes-Bug: #2031390
2023-11-30 10:55:46 +01:00
Zuul c113ddd5b6 Merge "Honor custom ssh args in kayobe-ansible-user.yml" 2023-11-29 12:33:36 +00:00
Zuul 76208da885 Merge "Adds support for using Dell OS 10 switches with NGS" 2023-11-28 18:05:03 +00:00
Zuul b31023ea54 Merge "Fix setting kolla_admin_openrc_cacert" 2023-11-09 01:35:47 +00:00
Zuul 1d2d03b76a Merge "Fallback to templating when only one source exists" 2023-11-08 19:52:02 +00:00
Zuul 63f9aa4ef1 Merge "Generate local Kolla Ansible config in check mode" 2023-11-08 18:26:14 +00:00
Zuul 79ebd52445 Merge "Fix an issue when user forgot combine custom passwords" 2023-11-08 16:55:53 +00:00
Zuul c2f8691fe9 Merge "Bump up Ansible supported versions to 7.x/8.x" 2023-11-08 16:15:42 +00:00
Will Szumski 86d9a533e8 Fallback to templating when only one source exists
This is a backwards compatability improvement, since it was previously
permitted to have a config file that templated to invalid yaml/ini.

Change-Id: I53a0894cc64e83c7342a82ad987b7e5a4696ece2
Closes-Bug: #2042690
2023-11-08 12:33:41 +00:00
Grzegorz Koper 80f6db34cd Bump up Ansible supported versions to 7.x/8.x
This change bumps up the maximum supported version of Ansible to 8.x
(ansible-core 2.15.x) and minimum to 7.x (ansible-core 2.14.x).

Depends on:
https://github.com/stackhpc/ansible-role-systemd-networkd/pull/10

https://github.com/stackhpc/ansible-role-dell-powerconnect-switch/pull/13

https://github.com/stackhpc/ansible-role-mellanox-switch/pull/8

gateway_ip was being set to empty string. This was triggering neutron
""Invalid input for gateway_ip. Reason: '' is not a valid IP address."
Omitting by default.

Installing openstack.cloud collection.
Upgrade failed as Ansible in kayobe-venv was not upgraded.

Change-Id: Ia3550644e5fc3e83f792e46d42b4c35d5eec4705
2023-11-07 18:33:06 +01:00
Will Szumski 2f4b45cd17 Stop merging config when symlink points to same file
This can result in duplicated configuration options.

Change-Id: I4dd6ffae027345b8c1cc217a63e85f8af7fc9746
Closes-Bug: #2042689
2023-11-03 17:49:26 +00:00
Mark Goddard 35259800aa switches: add flag to save configuration on Dell switches
Currently only supported on Dell OS9 and OS10 switches, and provides no
CLI integration.

Change-Id: Ia9242ed823868cba3a27fb9344a3b01283528d87
2023-11-01 16:57:03 +00:00
Mark Goddard 2071dc9a38 Allow more fine-grained groups for ironic, loadbalancer & network
Kayobe has fairly coarse-grained default groups - controller, compute,
etc, which work well in the majority of cases. Kolla Ansible allows much
more fine-grained placement on a per-service basis, e.g.
ironic-conductor. If the operator has taken advantage of this
fine-grained placement, then it is possible that some of the assumptions
in Kayobe may be incorrect. This is one downside of the split between
Kayobe and Kolla Ansible.

For example, Ironic conductor services may have been moved to a subset
of the top level 'controllers' group. In this case, we would not want
the Ironic networks to be mapped to all hosts in the controllers group -
only those running Ironic conductor services. The same argument can be
made if the loadbalancer services (HAProxy & keepalived) or Neutron
dataplane services (e.g. L3 & DHCP agents) have been separated from the
top level 'network' group.

This change abstracts the placement of Ironic conductor Ironic
inspector, loadbalancer and network services into separate variables,
rather than referencing the top level 'controllers' and 'network' groups
directly. These variables may be updated by the operator to match the
service placement.

Change-Id: Idbf181c795ee98ad653f11ae483f9dab4ef1b599
2023-11-01 16:16:45 +00:00
Maksim Malchuk 73abf0e57e Fix an issue when user forgot combine custom passwords
Fixes an issue when user forgot to combine
'kolla_ansible_custom_passwords',
'kolla_ansible_default_custom_passwords' and own dictionary with
custom passwords in configuration files. Now
'kolla_ansible_extra_custom_passwords' should provide only user
custom passwords to add or override in the passwords.yml.

Change-Id: I4813a1f6ab9cb566596e806bd0ada6dff342d119
Signed-off-by: Maksim Malchuk <maksim.malchuk@gmail.com>
2023-11-01 11:30:45 +00:00