Remove centos-7 job
Mark centos-8 as non-voting
Rename ubuntu vars file to cover focal and bionic
Add functional jobs to gate as well as check
Fix linter errors
Change-Id: Iacdcda303d483617c6e94b815e2c5c1d65145f0d
including I3eb65347b4988d376e02d7f4ff111b88b5043fb5
and I79d673e5b1fe9b9b1999a558b323821ddee970a9 as these
changes depend on each other.
Change-Id: I0121507e2f3ba63ec4b54283b588579f80f38965
This patch adds the Debian jobs for this role to make sure
it's always passing as well as updates the meta and creates
debian.yml var file to reflect it's support of Debian accordingly.
Change-Id: I2653aea2aebc95bfc67fe49bc66fb68a4f996170
If a stock aa profile exists for dnsmasq (SUSE, Ubuntu) the nspawn
deployment will fail due to the profile being strict. This change
sets the profile to complain, which allows the deployment to
succeed. The new tasks will detect a stock dnsmasq aa profile and
set it to complain if found.
Change-Id: Ie565b683d2f06e47f7a46497ce3c38d604a0fed6
Signed-off-by: Kevin Carter <kevin@cloudnull.com>
This change removes the assumption that ip and iptables are always in
the same location on any distro by setting the specific tool path per OS
package manager type.
This adapts the pattern set here:
fc9a2d03dc/tests/roles/bootstrap-host/defaults/main.yml (L106-L118)
Change-Id: If7ddd8f2afb8c990f2b5117947f103626663ad21
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
The timezone package is required in order to have the containers report
correct time the timezone package is required. This change install the
tz package across all of the distros we support.
Change-Id: I2aa2561cc6e2c71db0a16590f5d9dbab24b393d2
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
Bionic requires a functioning gpg-agent to run apt-key add. This means
that gpg-agent must be working properly in the chroot when the nspawn
image preparation script runs.
Previous changes [1] have enabled apt-key to communicate with gpg-agent
during the nspawn_hosts role checks, however the cache prep fails almost
every time when nspawn_hosts is used within other role checks.
This is not a new issue, debian-installer is affected too [2].
This change adopts the same route as d-i, and simply copies the host
/etc/apt/trusted.gpg.d directory to the nspawn image, removing the
need for apt-key and in turn gpg-agent.
This is a re-implementation of https://review.openstack.org/588962
for nspawn.
[1] https://review.openstack.org/590431
[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851774
Change-Id: I3c56da445377d7ba27a623fb7ebe95c20d28a327
This change moves the hidden `container_extra_networks` options to the
defaults file and adds a blerb regarding how this functions.
Change-Id: I4d7a9f05cf8382d0b83dd0ce574f7f4ba3783a63
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
These development libs are required by some services to build and
start. This change adds the dev libs to the base image, which mirrors
the base lxc image .
Change-Id: If359aefbe5dfd57347e55465b8a7f990801501a5
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
the python libs are required to start uwsgi services and because the
container images are so minimal the basic libs need to be installed.
Change-Id: I01cf4222c27bda3945d506fbc31a68bc717d480e
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
There are some inter-dependencies here where the container tasks will
not pass until a few updates are in both here and elsewhere. This change
sets the container create tasks to non-voting until all of the required
updates get in.
Remove the aria2 requirement
While aria2 has some nice features, the get_url command can do most of
what we need and does so in a far more universal way. This change
removes the aria2 dependency and updates the aria2 tasks to use the
get_url module.
Change-Id: Iab422c718d789ef13b8ec55938fdb7e73e40061b
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
The EPEL repositories currently conflict with the RDO packages,
this commit drops it from openstack_hosts so new installs do not
get it.
Change-Id: I84c9c3e915207a79a54f613a382f92a1c1064196
The combined networks variable will allow deployers to set basic
container networks, default nspawn networks, and any "extra" networks a
deployer may need outside of a standard build.
Change-Id: I5346fdf81967d6eb7f69e61a187166c076ca4b60
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
Without the trailing slash the sync task will create a nested directory
for the target when is a directory. This change ensures we're copying
copying the directories correctly.
This behaviour has been documented in the defaults file.
Change-Id: I6965e132674238727d69606464f2140ec42d6434
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
The host copy process was taking too much, this makes that process more
selective.
Change-Id: Ic25559d9b68b6208ffdbed020cc79bd6b3d52fdd
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This change removes some more boiler plate and ensures all of the
required files are copied into the base container image.
Change-Id: I4f74364d0969363297b286ae8327291659d20a00
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
These packages were removed because they were thought not be required,
however they are.
Change-Id: I174d5f0311ea1ac54e14a58fa4603a135353c6cb
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
Update container pkg list and use qgroups
Other roles within OSA require additional packages that were removed
from the base cache. This change puts those packages back.
Additionally this change implements qgroups which will resolve an issue
where the containers are spamming a reoccuring error message indicating
an issue with the loopback file system.
Change-Id: If658e5f332e4580cc51182ac92331a2ef91fbcb8
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
Now that bionic testing is added into the tests repos, we can
start testing it in the repo.
Depends-On: https://review.openstack.org/#/c/566959/
Change-Id: I669204cce8c671ae14a9758fee29c8ff58d29e73
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
Use the common roles throught this role to remove all of the boilerplate
code we had. The common modules do most of the heavy lifing.
Update to fix the resolve.conf issue with the image cache prep.
Add legacy image support and use smaller upstream images by default.
Now that suse supports systemd-networkd we can enable suse support in
nspawn.
Change-Id: I5f6ceb928f5c0902adf2e34f96a5998840400777
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
While the legacy resolveconf service is fairly stable this change
updates us to use more of the built-in services and removes additional
dependencies.
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
Dmitriy Rabotyagov