We are excited to announce the release of: kolla-ansible 9.0.1: Ansible Deployment of Kolla containers This release is part of the train stable release series. The source is available from: https://opendev.org/openstack/kolla-ansible Download the package from: https://tarballs.openstack.org/kolla-ansible/ Please report issues through: https://bugs.launchpad.net/kolla-ansible/+bugs For more details, please see below. 9.0.1 ^^^^^ Bug Fixes * External Ceph: copy also cinder keyring to nova-compute. Since Train nova-compute needs also the cinder key in case rbd user is set to Cinder, because volume/pool checks have been moved to use rbd python library. Fixes LP#1859408 * Adds configuration to set *also_notifies* within the pools.yaml file when using the Infoblox backend for Designate. Pushing a DNS NOTIFY packet to the master does not cause the DNS update to be propagated onto other nodes within the cluster. This means each node needs a DNS NOTIFY packet otherwise users may be given a stale DNS record if they query any worker node. For details please see bug 1855085 * Fixes an issue with Docker client timeouts where Docker reports 'Read timed out'. The client timeout may be configured via "docker_client_timeout". The default timeout has been increased to 120 seconds. See bug for details. * Fixes IPv6 deployment on CentOS 7. The issues with RabbitMQ and MariaDB have been worked around. For details please see the following Launchpad bug records: bug 1848444, bug 1848452, bug 1856532 and bug 1856725. * Fixes an issue with fluentd parsing of WSGI logs for Aodh, Masakari, Qinling, Vitrage and Zun. See bug 1720371 for details. * Fixes glance_api to run as privileged and adds missing mounts so it can use an iscsi cinder backend as its store. LP#1855695 * When upgrading from Rocky to Stein HAProxy configuration moves from using a single configuration to assembling a file from snippets for each service. Applying the HAProxy tag to the entire play ensures that HAProxy configuration is generated for all services when the HAProxy tag is specified. For details please see bug 1855094. * Fixes an issue with the "ironic_ipxe" container serving instance images. See bug 1856194 for details. * Fixes templating of Prometheus configuration when Alertmanager is disabled. In a deployment where Prometheus is enabled and Alertmanager is disabled the configuration for the Prometheus will fail when templating as the variable *prometheus_alert_rules* does not contain the key *files*. For details please see <https://bugs.launchpad.net/kolla-ansible/+bug/1854540>`__. Changes in kolla-ansible 9.0.0..9.0.1 ------------------------------------- 7c60631e0 Enable Glance to use Cinder iSCSI backend a9fecc41a External Ceph: copy also cinder keyring to nova services 07031e38f Allow ironic_ipxe to serve instance images c21a891a2 Add also_notifies to Infoblox backend for Designate 8f7af8764 Fix Prometheus template generation 79dfa9b20 doc: move to train in quickstart c6ff77a9c Fix Zun Docker runtime selection 69d71cb43 Use distro_python_version in fernet-node-sync 0de5d36de Stop gzipping logs in get-logs.sh ff26dc747 Fix fernet-node-sync error catching edaa29363 Neutron: Added loading ip6_tables kernel module e55f13227 remove unused designate_pool_manager_database_password 0a94a111a CentOS 7 IPv6 doc changes 51b361991 Fix MariaDB galera IPv6 deployment on CentOS 7 c4f6eaeb7 Add internal TLS variables to globals.yml 7039def3d Generate HAProxy configuration for all enabled servvices ddb58138d Fix unable to connect to epmd when deploy rabbitmq by train with ipv6 51adfd010 Make fluentd-elasticsearch configuration more robust 37195999e CI: Test Swift 19bae1bfb Fix fluentd parsing of WSGI logs efe6083bb Support configuration of Docker client timeout eeff8e011 [neutron] Adjust neighbour table thresholds 999cf61a9 Template custom HAProxy service configuration Diffstat (except docs and test files) ------------------------------------- ansible/group_vars/all.yml | 3 ++ ansible/library/kolla_docker.py | 10 +++- ansible/roles/common/defaults/main.yml | 1 + ansible/roles/common/tasks/config.yml | 21 ++++++++ .../common/templates/conf/input/00-global.conf.j2 | 4 +- .../templates/conf/input/04-openstack-wsgi.conf.j2 | 2 +- .../common/templates/conf/output/00-local.conf.j2 | 6 +++ .../common/templates/conf/output/01-es.conf.j2 | 3 ++ ansible/roles/common/templates/fluentd.json.j2 | 5 ++ .../roles/common/templates/kolla-toolbox.json.j2 | 12 +++++ ansible/roles/designate/templates/pools.yaml.j2 | 5 ++ ansible/roles/glance/defaults/main.yml | 4 ++ ansible/roles/glance/handlers/main.yml | 1 + ansible/roles/glance/tasks/check-containers.yml | 1 + ansible/roles/glance/tasks/rolling_upgrade.yml | 6 +-- ansible/roles/haproxy/tasks/config.yml | 2 +- ansible/roles/ironic/defaults/main.yml | 1 + .../keystone/templates/fernet-node-sync.sh.j2 | 5 +- ansible/roles/mariadb/templates/galera.cnf.j2 | 13 +++++ ansible/roles/neutron/defaults/main.yml | 6 +++ ansible/roles/neutron/tasks/config.yml | 14 +++++ ansible/roles/nova-cell/tasks/external_ceph.yml | 16 +++++- .../roles/prometheus/templates/prometheus.yml.j2 | 2 +- .../roles/rabbitmq/templates/rabbitmq-env.conf.j2 | 1 + ansible/roles/zun/templates/zun.conf.j2 | 1 - ansible/site.yml | 3 +- etc/kolla/globals.yml | 8 ++- etc/kolla/passwords.yml | 1 - ...ernal-ceph-cinder-keyring-7df624ac556c100b.yaml | 7 +++ ...lox-backend-also-notifies-0214cc1e51b838b8.yaml | 11 ++++ .../docker-client-timeout-dc221b2d350efad8.yaml | 8 +++ .../notes/fix-centos-7-ipv6-39ac9207b8196ac7.yaml | 13 +++++ .../fix-wsgi-log-collection-c9f347096394df5c.yaml | 6 +++ .../glance-fix-iscsi-backend-784aca2c2456333c.yaml | 6 +++ .../haproxy-tag-entire-play-537aed55ffd947be.yaml | 9 ++++ ...ronic-ipxe-instance-image-47fb3c9f0edef5f5.yaml | 6 +++ ...hen-alertmanager-disabled-0090c1570ff4e632.yaml | 8 +++ zuul.d/base.yaml | 14 +++++ zuul.d/jobs.yaml | 16 ++++++ zuul.d/project.yaml | 4 ++ 49 files changed, 436 insertions(+), 35 deletions(-)