forked from openstack/kayobe
-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge branch 'stackhpc/xena' into upstream/xena-2022-10-17
- Loading branch information
Showing
76 changed files
with
1,583 additions
and
57 deletions.
There are no files selected for viewing
Validating CODEOWNERS rules …
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
* @stackhpc/kayobe |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
--- | ||
name: Tag & Release | ||
'on': | ||
push: | ||
branches: | ||
- stackhpc/xena | ||
permissions: | ||
contents: write | ||
jobs: | ||
tag-and-release: | ||
uses: stackhpc/.github/.github/workflows/tag-and-release.yml@main |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
--- | ||
name: Tox Continuous Integration | ||
'on': | ||
pull_request: | ||
jobs: | ||
tox: | ||
uses: stackhpc/.github/.github/workflows/tox.yml@main |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,59 @@ | ||
--- | ||
- name: Ensure the libvirt daemon is configured | ||
hosts: compute | ||
tags: | ||
- libvirt-host | ||
tasks: | ||
- name: Ensure Ceph package repository is available | ||
package: | ||
name: "centos-release-ceph-{{ compute_libvirt_ceph_repo_release }}" | ||
state: present | ||
when: | ||
- compute_libvirt_enabled | bool | ||
- ansible_facts.distribution in ['CentOS', 'Rocky'] | ||
- compute_libvirt_ceph_repo_install | bool | ||
become: true | ||
|
||
- name: Include stackhpc.libvirt-host role | ||
include_role: | ||
name: stackhpc.libvirt-host | ||
vars: | ||
libvirt_host_libvirtd_conf: "{{ compute_libvirt_conf }}" | ||
libvirt_host_qemu_conf: "{{ compute_qemu_conf }}" | ||
libvirt_host_enable_sasl_support: "{{ compute_libvirt_enable_sasl | bool }}" | ||
libvirt_host_sasl_authname: nova | ||
libvirt_host_sasl_password: "{{ compute_libvirt_sasl_password }}" | ||
libvirt_host_tcp_listen: "{{ not compute_libvirt_enable_tls | bool }}" | ||
libvirt_host_tcp_listen_address: "{{ internal_net_name | net_ip }}:16509" | ||
libvirt_host_tls_listen: "{{ compute_libvirt_enable_tls | bool }}" | ||
libvirt_host_tls_listen_address: "{{ internal_net_name | net_ip }}:16514" | ||
# TLS server and client certificates. | ||
libvirt_host_tls_server_cert: >- | ||
{{ lookup('file', lookup('first_found', lookup_params | combine({'files': ['servercert.pem']}))) | ||
if libvirt_host_tls_listen | default(False) | bool else '' }} | ||
libvirt_host_tls_server_key: >- | ||
{{ lookup('file', lookup('first_found', lookup_params | combine({'files': ['serverkey.pem']}))) | ||
if libvirt_host_tls_listen | default(False) | bool else '' }} | ||
libvirt_host_tls_client_cert: >- | ||
{{ lookup('file', lookup('first_found', lookup_params | combine({'files': ['clientcert.pem']}))) | ||
if libvirt_host_tls_listen | default(False) | bool else '' }} | ||
libvirt_host_tls_client_key: >- | ||
{{ lookup('file', lookup('first_found', lookup_params | combine({'files': ['clientkey.pem']}))) | ||
if libvirt_host_tls_listen | default(False) | bool else '' }} | ||
libvirt_host_tls_cacert: >- | ||
{{ lookup('file', lookup('first_found', lookup_params | combine({'files': ['cacert.pem']}))) | ||
if libvirt_host_tls_listen | default(False) | bool else '' }} | ||
lookup_params: | ||
paths: "{{ libvirt_tls_cert_paths }}" | ||
skip: true | ||
# Support loading libvirt TLS certificates & keys from per-host and | ||
# global locations. | ||
libvirt_tls_cert_paths: >- | ||
{{ (libvirt_tls_cert_dirs | unique | product([inventory_hostname]) | map('path_join') | list + | ||
libvirt_tls_cert_dirs | unique | list) | list }} | ||
libvirt_tls_cert_dirs: | ||
- "{{ kayobe_env_config_path }}/certificates/libvirt" | ||
- "{{ kayobe_config_path }}/certificates/libvirt" | ||
libvirt_host_enable_efi_support: true | ||
when: | ||
- compute_libvirt_enabled | bool |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,95 @@ | ||
--- | ||
# Overcloud host disk image configuration. | ||
|
||
############################################################################### | ||
# Diskimage-builder configuration for overcloud host disk images. | ||
|
||
# Whether to build host disk images with DIB directly instead of through | ||
# Bifrost. Setting it to true disables Bifrost image build and allows images to | ||
# be built with the `kayobe overcloud host image build` command. Default value | ||
# is {{ os_distribution == 'rocky' }}. This will change in a future release. | ||
overcloud_dib_build_host_images: "{{ os_distribution == 'rocky' }}" | ||
|
||
# List of additional build host packages to install. | ||
overcloud_dib_host_packages_extra: [] | ||
|
||
# List of overcloud host disk images to build. Each element is a dict defining | ||
# an image in a format accepted by the stackhpc.os-images role. Default is to | ||
# build an image named "deployment_image" configured with the overcloud_dib_* | ||
# variables defined below: {"name": "deployment_image", "elements": "{{ | ||
# overcloud_dib_elements }}", "env": "{{ overcloud_dib_env_vars }}", | ||
# "packages": "{{ overcloud_dib_packages }}"}. | ||
overcloud_dib_host_images: | ||
- name: "deployment_image" | ||
elements: "{{ overcloud_dib_elements }}" | ||
env: "{{ overcloud_dib_env_vars }}" | ||
packages: "{{ overcloud_dib_packages }}" | ||
|
||
# DIB base OS element. Default is {{ 'rocky-container' if os_distribution == | ||
# 'rocky' else os_distribution }}. | ||
overcloud_dib_os_element: "{{ 'rocky-container' if os_distribution == 'rocky' else os_distribution }}" | ||
|
||
# DIB image OS release. Default is {{ os_release }}. | ||
overcloud_dib_os_release: "{{ os_release }}" | ||
|
||
# List of default DIB elements. Default is ["centos", "cloud-init-datasources", | ||
# "disable-selinux", "enable-serial-console", "vm"] when | ||
# overcloud_dib_os_element is "centos", or ["rocky-container", | ||
# "cloud-init-datasources", "disable-selinux", "enable-serial-console", "vm"] | ||
# when overcloud_dib_os_element is "rocky" or | ||
# ["ubuntu", "cloud-init-datasources", "enable-serial-console", "vm"] | ||
# when overcloud_dib_os_element is "ubuntu". | ||
overcloud_dib_elements_default: | ||
- "{{ overcloud_dib_os_element }}" | ||
- "cloud-init-datasources" | ||
- "{% if overcloud_dib_os_element in ['centos', 'rocky'] %}disable-selinux{% endif %}" | ||
- "enable-serial-console" | ||
- "vm" | ||
|
||
# List of additional DIB elements. Default is none. | ||
overcloud_dib_elements_extra: [] | ||
|
||
# List of DIB elements. Default is a combination of | ||
# overcloud_dib_elements_default and overcloud_dib_elements_extra. | ||
overcloud_dib_elements: "{{ overcloud_dib_elements_default | select | list + overcloud_dib_elements_extra }}" | ||
|
||
# DIB default environment variables. Default is | ||
# {"DIB_BOOTLOADER_DEFAULT_CMDLINE": "nofb nomodeset gfxpayload=text | ||
# net.ifnames=1", "DIB_CLOUD_INIT_DATASOURCES": "ConfigDrive", | ||
# "DIB_CONTAINERFILE_RUNTIME": "docker", "DIB_CONTAINERFILE_NETWORK_DRIVER": | ||
# "host", "DIB_RELEASE": "{{ overcloud_dib_os_release }}"}. | ||
overcloud_dib_env_vars_default: | ||
DIB_BOOTLOADER_DEFAULT_CMDLINE: "nofb nomodeset gfxpayload=text net.ifnames=1" | ||
DIB_CLOUD_INIT_DATASOURCES: "ConfigDrive" | ||
DIB_CONTAINERFILE_RUNTIME: "docker" | ||
DIB_CONTAINERFILE_NETWORK_DRIVER: "host" | ||
DIB_RELEASE: "{{ overcloud_dib_os_release }}" | ||
|
||
# DIB additional environment variables. Default is none. | ||
overcloud_dib_env_vars_extra: {} | ||
|
||
# DIB environment variables. Default is combination of | ||
# overcloud_dib_env_vars_default and overcloud_dib_env_vars_extra. | ||
overcloud_dib_env_vars: "{{ overcloud_dib_env_vars_default | combine(overcloud_dib_env_vars_extra) }}" | ||
|
||
# List of DIB packages to install. Default is to install no extra packages. | ||
overcloud_dib_packages: [] | ||
|
||
# List of default git repositories containing Diskimage Builder (DIB) elements. | ||
# See stackhpc.os-images role for usage. Default is empty. | ||
overcloud_dib_git_elements_default: [] | ||
|
||
# List of additional git repositories containing Diskimage Builder (DIB) | ||
# elements. See stackhpc.os-images role for usage. Default is empty. | ||
overcloud_dib_git_elements_extra: [] | ||
|
||
# List of git repositories containing Diskimage Builder (DIB) elements. See | ||
# stackhpc.os-images role for usage. Default is a combination of | ||
# overcloud_dib_git_elements_default and overcloud_dib_git_elements_extra. | ||
overcloud_dib_git_elements: >- | ||
{{ overcloud_dib_git_elements_default + overcloud_dib_git_elements_extra }} | ||
|
||
# Upper constraints file for installing packages in the virtual environment | ||
# used for building overcloud host disk images. Default is {{ | ||
# pip_upper_constraints_file }}. | ||
overcloud_dib_upper_constraints_file: "{{ pip_upper_constraints_file }}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,21 @@ | ||
--- | ||
############################################################################### | ||
# Configuration of HTTP(S) proxies. | ||
|
||
# HTTP proxy URL (format: http(s)://[user:password@]proxy_name:port). By | ||
# default no proxy is used. | ||
http_proxy: "" | ||
|
||
# HTTPS proxy URL (format: http(s)://[user:password@]proxy_name:port). By | ||
# default no proxy is used. | ||
https_proxy: "" | ||
|
||
# List of domains, hostnames, IP addresses and networks for which no proxy is | ||
# used. Defaults to ["127.0.0.1", "localhost", "{{ ('http://' ~ | ||
# docker_registry) | urlsplit('hostname') }}"] if docker_registry is set, or | ||
# ["127.0.0.1", "localhost"] otherwise. This is configured only if either | ||
# http_proxy or https_proxy is set. | ||
no_proxy: | ||
- "127.0.0.1" | ||
- "localhost" | ||
- "{{ ('http://' ~ docker_registry) | urlsplit('hostname') if docker_registry else '' }}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.