- 06 Apr, 2021 2 commits
-
-
Guillaume Abrioux authored
This adds all rgw ports to the http_port_t selinux type so it allows haproxy to connect to those ports in order to avoid AVC. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1923890 Signed-off-by:
Guillaume Abrioux <gabrioux@redhat.com> (cherry picked from commit 6bbb9019)
-
kalebskeithley authored
haproxy gets an AVC when configured to connect to port 8081 This commit adds a snippet regarding haproxy in a selinux environment Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1923890 Signed-off-by:
Kaleb S KEITHLEY <kkeithle@redhat.com> (cherry picked from commit 9e7f22a0)
-
- 02 Apr, 2021 1 commit
-
-
Dimitri Savineau authored
Pass the password variable via stdin for the registry login authentication. This allows to remove the no_log statement and see the task output without displaying the password value. Signed-off-by:
Dimitri Savineau <dsavinea@redhat.com> (cherry picked from commit a0e1a450)
-
- 01 Apr, 2021 3 commits
-
-
Guillaume Abrioux authored
Support enabling/disabling the pg autoscaler for rgw pools. Signed-off-by:
-
Guillaume Abrioux authored
This commit adds the parameter `--storage.tsdb.retention.time` to the prometheus systemd unit template. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1928000 Signed-off-by:
-
Guillaume Abrioux authored
Currently NFS Ganesha (ceph-nfs) consumes /etc/idmapd.conf, which controls mapping of user/owner identities under NFSv4+. With containerized service deployment, this file is an immutable part of the container image and cannot be modified. Here we provide group variables, and a taskk and templates for the ceph-nfs role, to set the path of the idmap configuration file and to make the most common adjustment to the contents of that file -- namely to set the 'Domain'. We default the path to /etc/ganesha/idmap.conf so that we will not conflict with /etc/idmapd.conf on the controller nodes where ganesha runs. NFSv4 clients, as used for example by the Cinder NFS driver, consume /etc/idmapd.conf and may require different settings than what is wanted for NFS Ganesha. Additionally, because we already bind /etc/ganesha from the host into the ceph-nfs container, the file NFS Ganesha consumes will no longer be an immutable part of the container. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1925646 Signed-off-by: Tom Barron tpb@dyncloud.net Co-Authored-by:
-
- 29 Mar, 2021 2 commits
-
-
Guillaume Abrioux authored
This add a quick documentation in ceph-defaults about `igw_network` Signed-off-by:
-
Guillaume Abrioux authored
Playbook must fail anyway, the `rescue` block has been introduced for unmasking the unit after the playbook has failed. Signed-off-by:
-
- 26 Mar, 2021 4 commits
-
-
Guillaume Abrioux authored
This adds the possibility to deploy the dashboard with igw nodes using a dedicated subnet. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1926170 Signed-off-by:
-
VasishtaShastry authored
rbd-mirroring is not configured as adding peer is getting skipped. Peer addition should not get skipped if its not added already Closes - https://bugzilla.redhat.com/show_bug.cgi?id=1942444 Signed-off-by:
VasishtaShastry <vipin.indiasmg@gmail.com> (cherry picked from commit 006998e8)
-
Guillaume Abrioux authored
This commit makes the playbook fetch the minimal current ceph configuration and write it later on monitoring nodes so `cephadm` can proceed with the adoption. When a monitoring stack was deployed on a dedicated node, it means no `ceph.conf` file was written, `cephadm` requires a `ceph.conf` in order to adopt the daemon present on the node. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1939887 Signed-off-by:
-
Ali Maredia authored
Docs reflect that each instance of `rgw_instances` can now take rgw_zonemaster, rgw_zonesecondary, rgw_zonegroupmaster, rgw_multisite_proto. Signed-off-by:
Ali Maredia <amaredia@redhat.com> (cherry picked from commit a59bc2da)
-
- 25 Mar, 2021 6 commits
-
-
Guillaume Abrioux authored
This is never called in the playbook and seems unmaintained. Signed-off-by:
-
Ken Dreyer authored
This commit fixes some typos in MULTISITE documentation. Signed-off-by:
Ken Dreyer <ktdreyer@redhat.com> (cherry picked from commit 63a246db)
-
Guillaume Abrioux authored
This converts some missed calls to `ansible_*` that were missed in initial PR #6312 Signed-off-by:
-
Guillaume Abrioux authored
when the group `_filtered_clients` is built, the order can change from the original `clients` group which can cause issues since we run `ceph-container-engine` on the first client only. It means later in the playbook we can make call to the container CLI on a node where the container engine wasn't installed. Signed-off-by:
-
Alex Schultz authored
As a continuation of a7f2fa73 , this change switches fact injection to off by default in the provided ansible.cfg. Signed-off-by:
Alex Schultz <aschultz@redhat.com> (cherry picked from commit db031a49) (cherry picked from commit 5fa4ff5ed36e9df3215e54cb55ddc6e9905f486c)
-
Alex Schultz authored
It has come to our attention that using ansible_* vars that are populated with INJECT_FACTS_AS_VARS=True is not very performant. In order to be able to support setting that to off, we need to update the references to use ansible_facts[<thing>] instead of ansible_<thing>. Related: ansible#73654 Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1935406 Signed-off-by:
-
- 24 Mar, 2021 5 commits
-
-
Guillaume Abrioux authored
for some reason, `quay.io/app-sre/grafana` no longer exist. as a workaround, all dashboard related images have been mirrored on quay.ceph.io. Signed-off-by:
-
Guillaume Abrioux authored
due to recent changes in shaman, we must fetch the right repo by filtering on the desired architecture. Signed-off-by:
-
Guillaume Abrioux authored
The data structure seems to have been modified in ceph@master (quincy). This commit update the test accordingly. Signed-off-by:
-
Guillaume Abrioux authored
the data structure seems to have been modified in ceph@master (quincy). This commit update the test accordingly. Signed-off-by:
-
Guillaume Abrioux authored
This function makes the `ceph_volume` module be not idempotent in containerized context because it tries to run a container and bindmount directories that no longer exist. In that case, the `lvs` command being executed returns something different than `0` so we can't call `json.loads(out)['report'][0]['lv']` since it might throw an python error. The idea is to return `True` only if `rc` is equal to `0` and `len(result)` is greater than `0`, which means the command matched an LV. Fixes: #6284 Signed-off-by:
-
- 22 Mar, 2021 1 commit
-
-
Guillaume Abrioux authored
`command -v` is a bash script which needs a shell to run. Fixes: #6325 Signed-off-by:
-
- 18 Mar, 2021 3 commits
-
-
Guillaume Abrioux authored
This commit makes the playbook fetch the minimal current ceph configuration and write it later on monitoring nodes so `cephadm` can proceed with the adoption. When a monitoring stack was deployed on a dedicated node, it means no `ceph.conf` file was written, `cephadm` requires a `ceph.conf` in order to adopt the daemon present on the node. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1939887 Signed-off-by:
-
Guillaume Abrioux authored
Since we use the rerun plugin in tox, we shouldn't need to add these `sleep` commands. Signed-off-by:
-
Guillaume Abrioux authored
These tasks shouldn't be run when at least 1 monitor isn't present in the inventory. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1937997 Signed-off-by:
-
- 17 Mar, 2021 1 commit
-
-
Guillaume Abrioux authored
When collocating OSDs with other daemon, `num_osds` is incorrectly calculated because `ceph-config` is called multiple times. Indeed, the following code: ``` num_osds: "{{ lvm_list.stdout | default('{}') | from_json | length | int + num_osds | default(0) | int }}" ``` makes `num_osds` be incremented each time `ceph-config` is called. We have to reset it in order to get the correct number of expected OSDs. Signed-off-by:
-
- 12 Mar, 2021 5 commits
-
-
Matthew Vernon authored
There are times where being able to skip OSD creation is useful to the admin (see #1777 for example), and skipping the prepare_osd tag is a way to achieve this. Document this fact. Signed-off-by:
Matthew Vernon <mv3@sanger.ac.uk> (cherry picked from commit e66b7b74)
-
Matthew Vernon authored
Sometimes it's useful to be able to skip the OSD creation step when running ceph-ansible (cf #1777). The lvm scenario has a prepare_osd tag on the relevant play. This commit adds the same tag to the lvm-batch scenario. Signed-off-by:
-
Guillaume Abrioux authored
In order to avoid false positive in the CI that I've been unable to reproduce. Signed-off-by:
-
Guillaume Abrioux authored
the `ceph_cmd` fact is missing the `--net=host` parameter. Some tasks consuming this fact can fail like following: ``` Error: error configuring network namespace for container b8ec913db1fb694ae683faf202680de7a59c714a004e533aba87e8503d29261f: Missing CNI default network ``` Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1931365 Signed-off-by:
-
Matthew Vernon authored
While working on the previous PR, I found a couple of typos in the docs. This fixes those. Signed-off-by:
-
- 10 Mar, 2021 1 commit
-
-
Guillaume Abrioux authored
Due to recent changes in shaman, there's a chance it returns the wrong repository from architecture point of view. We can query shaman and ask for the correct architecture to get around this. Signed-off-by:
-
- 03 Mar, 2021 2 commits
-
-
Dimitri Savineau authored
The "update apt cache" in the ceph-handler role was never called and the handler trigger after adding the uca repository doesn't exist at all. Instead of using a handler for that we can just set the update_cache parameter to true like the other apt_repository tasks. Resolve merge conflict from cherry-picking this commit. Signed-off-by: -
Matthew Vernon authored
http://docs.ceph.com/docs/nautilus/radosgw/frontends/ 404s so replace it with a working "latest" docs link, and correct the spelling of "additional" while I'm at it. Signed-off-by:
-
- 01 Mar, 2021 1 commit
-
-
Florian Haas authored
config_template.py depends on six, which isn't listed in the default requirements.txt. This previously frequently wasn't a problem, because six used to be a standard package being installed into a venv, and lots of other projects depended on it. It also does get installed for unit and integration tests via tests/requirements.txt, so any broken dependency on six wouldn't be detected by tox runs. However, as other projects and distributions have phased out Python 2.7 support the dependency on six becomes less common. Thus, as long as ceph-ansible does require it for config_template.py, add it to the base requirements. Signed-off-by:
Florian Haas <florian@citynetwork.eu> (cherry picked from commit d49ea981)
-
- 18 Feb, 2021 1 commit
-
-
Guillaume Abrioux authored
The current dashboard images deployed have a bad health index. Updating to a newer version fixes this issue. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1925350 Signed-off-by:
-
- 14 Feb, 2021 1 commit
-
-
Guillaume Abrioux authored
When asking `ceph-volume` to report only in `lvm batch` context, there's a bug described in bz1896803 [1] when `--yes` is passed (which by the way isn't necessary with `--report`). This commit ensure `--yes` isn't passed to `ceph-volume` when `--report` is used. [1] https://bugzilla.redhat.com/show_bug.cgi?id=1896803 Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1896803 Signed-off-by:
-
- 12 Feb, 2021 1 commit
-
-
Guillaume Abrioux authored
This commit makes sure purge playbooks remove those file if for any reason they have been left. Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1920900 Signed-off-by:
-
