We are gleeful to announce the release of: kayobe 16.3.0 This release is part of the caracal release series. The source is available from: https://opendev.org/openstack/kayobe Download the package from: https://tarballs.openstack.org/kayobe/ Please report issues through: https://bugs.launchpad.net/kayobe/+bugs For more details, please see below. 16.3.0 ^^^^^^ New Features ************ * Adds the internal VIP to the NOPROXY/noproxy environment variables. * Adds support for using Cumulus switches (NCLU and NVUE) with Networking Generic Switch. Upgrade Notes ************* * Bumps the "stackhpc.linux" collection to 1.3.0. Note this version uses systemd to activate virtual functions. This change is restricted to the "stackhpc.linux.sriov" role, which is not used by Kayobe. If a custom playbook uses this role, you can retain existing behaviour by setting "sriov_numvfs_driver" to "udev". Security Issues *************** * When running API requests from a host configured with kayobe, traffic destined for the internal VIP is sent via the default proxy. This can be a security issue if not using TLS as the proxy will be able to intercept the traffic. If using an untrusted proxy, with TLS disabled on the internal VIP, it is recommended that you run "kayobe overcloud host configure -t proxy", "kayobe seed hypervisor host configure -t proxy", "kayobe seed host configure -t proxy", and "kayobe infra vm host configure -t proxy", to add the internal VIP to the no proxy configuration. This is considered a minor issue as traffic between containers will not use the proxy by default. LP#2087556 Bug Fixes ********* * Fixes IPA and host image build failures when Git was not installed on the build host. LP#2058922 * The "proxysql" image is now built when "kolla_enable_proxysql" is set to "true". * Updates the group and mode set on the "/var/log/journal" directory to match default ownership and permissions used by "systemd- journald". LP#2083494 * Fixes generation of kernel parameters when the GRUB_CMDLINE_LINUX_DEFAULT variable is absent from "/etc/default/grub". LP#2083874. * Pin requirements for IPA image build to ensure that the "ironic- lib" version matches "ironic-python-agent". LP#2089263 <https://bugs.launchpad.net/kayobe/+bug/2089263>`__ * Changes the default cloud image for seed and infra VMs to use Rocky Linux 9.3 when using "bios" boot mode, to fix boot failures with newer cloud images. When deploying new VMs, it is recommended to set "infra_vm_boot_firmware" and "seed_vm_boot_firmware" to "efi". * Fixes an issue when using overcloud Ironic with a shared Ansible control host. The use of a shared cache directory could lead to a failure to download Ironic Python Agent (IPA) images. LP#2069845 Changes in kayobe 16.2.0..16.3.0 -------------------------------- 1ed7724d CI: use quay.io/podman/hello due too dockerhub rate limits b5719257 Ensure ironic-python-agent matches ironic-lib 4e07e042 Add internal VIP address to no_proxy f6992fdd CI: Replace deprecated distro.linux_distribution 3c1ff0c3 CI: Fix Ubuntu 24.04 version check 77c1ad12 Add support for building the proxysql image dec71144 CI: Skip test_ntp_clock_synchronized on Ubuntu 24.04 bd47742c Fix group and mode of /var/log/journal b3c03627 Bump stackhpc.openstack collection to 0.2.2 27845067 Bump stackhpc.linux to v1.3.0 6720a227 Adds support for using Cumulus switches with NGS d888e881 CI: rework RabbitMQ handling in upgrades c0cf61db Remove duplicate description of filename key 324da76e Avoid shared IPA image cache on Ansible control host 5274c4e6 Use Rocky Linux 9.3 images unless in efi boot mode Diffstat (except docs and test files) ------------------------------------- ansible/inventory/group_vars/all/infra-vms | 14 +++++--- ansible/inventory/group_vars/all/ipa | 1 + ansible/inventory/group_vars/all/kolla | 3 ++ ansible/inventory/group_vars/all/proxy | 1 + ansible/inventory/group_vars/all/seed-vm | 12 +++++-- ansible/kolla-openstack.yml | 40 ++++------------------ ansible/logging.yml | 4 +-- ansible/roles/image-download/defaults/main.yml | 4 +++ ansible/roles/image-download/tasks/main.yml | 40 ++++++++++++++-------- ansible/roles/kolla-openstack/defaults/main.yml | 5 +++ ansible/roles/kolla-openstack/tasks/config.yml | 1 + dev/functions | 24 ------------- .../reference/ironic-python-agent.rst | 17 +++++---- etc/kayobe/apt.yml | 2 -- etc/kayobe/infra-vms.yml | 10 +++--- etc/kayobe/proxy.yml | 5 +-- etc/kayobe/seed-vm.yml | 8 +++-- playbooks/kayobe-overcloud-upgrade-base/run.yml | 20 +++++++++++ ...-internal-vip-to-no-proxy-cbb4db4ea3909185.yaml | 17 +++++++++ .../notes/bug-2058922-c16426f013ddf3ca.yaml | 5 +++ .../build-proxysql-image-ec09332ef0b7dae0.yaml | 5 +++ ...bump-stackhpc-linux-1.3.0-892bc5ae7574508b.yaml | 9 +++++ .../cumulus-support-ngs-c4a6e6f3d45f5783.yaml | 5 +++ ...ar-log-journal-group-mode-3e7c4c822d050c8f.yaml | 6 ++++ ...rub-cmdline-linux-default-f4079def0b1357e7.yaml | 6 ++++ .../pin-ipa-requirements-f9566011b2400e6c.yaml | 6 ++++ ...l9-vm-image-bios-firmware-b025ac853f68a91b.yaml | 7 ++++ .../remove-local-ipa-cache-1fe125360f5d3385.yaml | 7 ++++ requirements.yml | 4 +-- 30 files changed, 199 insertions(+), 106 deletions(-)